everytable.com/s/w28Ef-5mN00TcQjastqqJg
104.18.207.227301 Moved Permanently 0 B URL HTTP/1.1 everytable.com/s/w28Ef-5mN00TcQjastqqJg
IP 104.18.207.227:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/w28Ef-5mN00TcQjastqqJg HTTP/1.1
Host: everytable.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 18 Jan 2023 09:08:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 18 Jan 2023 10:08:15 GMT
Location: https://everytable.com/s/w28Ef-5mN00TcQjastqqJg
Set-Cookie: __cf_bm=LXe5P_3blJpZBQdpYKHwEOW1Z94RBWosDSwSAiju8oU-1674032895-0-AW75VEFGlACnPsAFKjYT/s3lmWoduc7drJulC+y4EvAHlyWr8Nr9IObq9yzltN7KB1+Pl3iY4i4tCkN1RmycuVc=; path=/; expires=Wed, 18-Jan-23 09:38:15 GMT; domain=.everytable.com; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78b62f5ecff01c12-OSL
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 4b8b051d555b46b1e9e64faebf91b4ab
bdab7f1f4146f0e7c16665692e4f1edd83c10a24
e069730519f658e767ec8edb57edd8e2b1ccb18d4f0ade0920654eac18f83456
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E069730519F658E767EC8EDB57EDD8E2B1CCB18D4F0ADE0920654EAC18F83456"
Last-Modified: Tue, 17 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17838
Expires: Wed, 18 Jan 2023 14:05:33 GMT
Date: Wed, 18 Jan 2023 09:08:15 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash bb0c8d0984a1f09a012961a54cda03c6
1a8ad450a0241554ee4fc7d02fac7b83529e60f6
eee3ca879a67cc25ea89cb83de9521eea1b82845705c3e82169d4787ecb7dd3a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EEE3CA879A67CC25EA89CB83DE9521EEA1B82845705C3E82169D4787ECB7DD3A"
Last-Modified: Mon, 16 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3929
Expires: Wed, 18 Jan 2023 10:13:45 GMT
Date: Wed, 18 Jan 2023 09:08:16 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d38f4bb41e1264b8a1e11ff0b1499d20
21c3e36bd908df43e0d49b747e270ec75cb882b0
3ff822eb56d2218ad6244fd013a82e0d27450ae21d47e08f1e3fdf4c82a8aad7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3FF822EB56D2218AD6244FD013A82E0D27450AE21D47E08F1E3FDF4C82A8AAD7"
Last-Modified: Mon, 16 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16436
Expires: Wed, 18 Jan 2023 13:42:12 GMT
Date: Wed, 18 Jan 2023 09:08:16 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 18 Jan 2023 08:34:22 GMT
content-type: application/json
age: 2034
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: bXMJUgTH5By5FSQZVKMotnO7EnYgvY/GjcuX6l9uozmb0KeTsURrLjx/RjKfgE/qSjcgEFVF/y8=
x-amz-request-id: EEFBQGXCTPX7BS90
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 18 Jan 2023 08:45:20 GMT
age: 1376
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 09:08:16 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Pragma, Content-Length, Alert, Expires, ETag, Last-Modified, Backoff, Content-Type, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 18 Jan 2023 08:48:57 GMT
age: 1159
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8720730dce33d0026a1a354ac93d4a7d
ed5f086bc646a4d93d2344b19ff7821c96e44f7c
b2892fda88242fbc4d58dd1f3bb159ca02cbf98b77c57dde66fba98d183c0136
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 218
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:16 GMT
Last-Modified: Wed, 18 Jan 2023 09:04:38 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
everytable.com/s/w28Ef-5mN00TcQjastqqJg
104.18.207.227302 Found 0 B URL HTTP/2 everytable.com/s/w28Ef-5mN00TcQjastqqJg
IP 104.18.207.227:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/w28Ef-5mN00TcQjastqqJg HTTP/1.1
Host: everytable.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Wed, 18 Jan 2023 09:08:16 GMT
content-length: 0
location: /Account/Manage/Subscriptions/Settings?id=7f046fc3-66ee-4d37-1371-08dab2daaa26
request-context: appId=cid-v1:c62b87f9-ce69-438e-a223-f3f1437300d0
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=HenybGeyttPZphMU2JjWkPfO.b35eEmM4Peifv.aUSI-1674032896-0-ASfyioJzj2JxFhmtXhxwZgSRy/taUeroY9mupOCQmHfKynF4bheZY75sUNf2/U/D7fAYzF7JEZLY8DbzdeHm0AU=; path=/; expires=Wed, 18-Jan-23 09:38:16 GMT; domain=.everytable.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 78b62f607eabb51b-OSL
X-Firefox-Spdy: h2
everytable.com/Account/Manage/Subscriptions/Settings?id=7f046fc3-66ee-4d37-1371-08dab2daaa26
104.18.207.227302 Found 0 B URL HTTP/2 everytable.com/Account/Manage/Subscriptions/Settings?id=7f046fc3-66ee-4d37-1371-08dab2daaa26
IP 104.18.207.227:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Account/Manage/Subscriptions/Settings?id=7f046fc3-66ee-4d37-1371-08dab2daaa26 HTTP/1.1
Host: everytable.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __cf_bm=HenybGeyttPZphMU2JjWkPfO.b35eEmM4Peifv.aUSI-1674032896-0-ASfyioJzj2JxFhmtXhxwZgSRy/taUeroY9mupOCQmHfKynF4bheZY75sUNf2/U/D7fAYzF7JEZLY8DbzdeHm0AU=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 302 Found
date: Wed, 18 Jan 2023 09:08:17 GMT
content-length: 0
location: https://everytable.com/Account/Login?ReturnUrl=%2FAccount%2FManage%2FSubscriptions%2FSettings%3Fid%3D7f046fc3-66ee-4d37-1371-08dab2daaa26
request-context: appId=cid-v1:c62b87f9-ce69-438e-a223-f3f1437300d0
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 78b62f652e62b51b-OSL
X-Firefox-Spdy: h2
push.services.mozilla.com/
44.224.181.225101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.224.181.225:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: HEG1AwhliIjTDfYXJdM3nQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: qe3QALQ5e3Ggi9LSGfMFWwcBgLg=
cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js
104.17.25.14200 OK 28 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (65451)
Hash 638a4990025383a0f83ebf29bdb84a68
153e8818dc42f598e47fde8cf398f1447649a4d0
878e34b89800bb271d3588e526eb3598eb3822e263f3bdaf53645847d39d0ad6
GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://everytable.com
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:17 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 995015
expires: Mon, 08 Jan 2024 09:08:17 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3ZM04xtrHQqegJKCxGhKbYqVPlxXkWMub8j0oKGyJHu9rYUI3Jp0V8xF7gDvdqccTVN2%2BBciKcVfTMl%2Fg42CaPOpLxixldFM71iW2fstExym8aXu4PB9VmtZTm%2FMAL2F8uHv2X%2FS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 78b62f68dc05b50f-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery-validate/1.19.1/jquery.validate.min.js
104.17.25.14200 OK 6.9 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery-validate/1.19.1/jquery.validate.min.js
IP 104.17.25.14:0
File type Unicode text, UTF-8 text, with very long lines (24237)
Hash b1e2dc68243b810ee78fd1669609bafd
cc50ce023a61f353ed284f0b320ff67191264ff7
21913cb0aebf31a225870b0baf58d04c077454d72a40c2061a415e4a297f59c0
GET /ajax/libs/jquery-validate/1.19.1/jquery.validate.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://everytable.com
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:17 GMT
content-type: application/javascript; charset=utf-8
content-length: 6929
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec2-5f38"
last-modified: Mon, 04 May 2020 16:11:46 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1096707
expires: Mon, 08 Jan 2024 09:08:17 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Wmn2zbtJWaiBnaCI%2BWRT8owixPoBvtKj6ZVCwV9pgUVOhbgpaFj9qu0S%2BvBrAU74INAVcTpTmTt8GSpKG2AWsJ16hNkHXc%2BC65aw0YjmIVyw0Sx%2BAnfoHHe3gBSdCFVFpH79SLPs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 78b62f68dc11b50f-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/vue/3.0.11/vue.global.prod.js
104.17.25.14200 OK 38 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/vue/3.0.11/vue.global.prod.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 68fa639b6be8abefbc9db32b8ce2d4d6
a8d20c58d5c9b57663fc0bdb3da1cf0e8632bcff
35cf708f46a97b93df5647382f2adbf84e54587ff4f841a3aa6eb2426cb657fe
GET /ajax/libs/vue/3.0.11/vue.global.prod.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:17 GMT
content-type: application/javascript; charset=utf-8
content-length: 38060
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "6066681d-1b689"
last-modified: Fri, 02 Apr 2021 00:41:01 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 93150
expires: Mon, 08 Jan 2024 09:08:17 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=327jO9p1zxnKw2dQDRMyCix8k7Yu1Ez%2BVDNnhLbCfF3iYlBoiHoBGFWqWXnnC%2Fq%2FYhJXVqy4Zzv5ccdmqbuPVk8mdl0pIbICxfx%2FjeOUp%2FRTht3Wy58EWEHJBEbd9ACz09jRQcSe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 78b62f68eafc0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
172.217.21.163200 OK 472 B IP 172.217.21.163:0
Hash 773596e36fe4af70225f1ee08e977461
5595433fd09a22008b2c739f6626aef116ad5285
fb18080471e9a54e7d1c060d2e26b023f09c135e0d195e48917cd064549d7fdc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-J6VQVGRPP3
142.250.74.40200 OK 80 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-J6VQVGRPP3
IP 142.250.74.40:0
File type ASCII text, with very long lines (33122)
Hash b9a91620951c28c98a85c0157e1a548e
ffd255e42896034550930aea84dc200074c21f3c
ec8f85812340bb50ff6db9e6c71e6a00c85a22564ba8d0c25de8f27bac83155b
GET /gtag/js?id=G-J6VQVGRPP3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 18 Jan 2023 09:08:17 GMT
expires: Wed, 18 Jan 2023 09:08:17 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80028
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-81353517-1
142.250.74.40200 OK 45 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-81353517-1
IP 142.250.74.40:0
File type ASCII text, with very long lines (1921)
Hash 7af4d59dfff8c31a8e8a023229d21fc4
1c1b4b3a852d3289818199e8c5f6dc15f01b2098
fb691b184b4ecf865ec74390bc93bceba79ad5435d9fc124475e5d0d8ddb2b2b
GET /gtag/js?id=UA-81353517-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 18 Jan 2023 09:08:17 GMT
expires: Wed, 18 Jan 2023 09:08:17 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 45236
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
172.217.21.163200 OK 472 B IP 172.217.21.163:0
Hash 773596e36fe4af70225f1ee08e977461
5595433fd09a22008b2c739f6626aef116ad5285
fb18080471e9a54e7d1c060d2e26b023f09c135e0d195e48917cd064549d7fdc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.klaviyo.com/onsite/js/klaviyo.js?company_id=TCzVSh
151.101.194.133200 OK 1.0 kB URL HTTP/2 static.klaviyo.com/onsite/js/klaviyo.js?company_id=TCzVSh
IP 151.101.194.133:0
File type ASCII text, with very long lines (2904)
Hash c9c2ab4073b583fa94fe647404a42d01
9bd9de838b323b4edbce07fbe39fa6c033b2176d
f37280258c321c37c28cb6e4d26a514053a60984051d4a83a54e4e57b4ecf041
GET /onsite/js/klaviyo.js?company_id=TCzVSh HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers:
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
allow: OPTIONS, GET
cache-control: max-age=1, stale-while-revalidate=10800
content-encoding: gzip
content-type: application/javascript
etag: W/"bd62692cede05ba81f5516980b90cb38"
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 18 Jan 2023 09:08:17 GMT
age: 9379
x-served-by: cache-lga21939-LGA, cache-bma1633-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1674032898.540564,VS0,VE92
vary: Accept-Encoding
content-length: 1039
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/vendors~signup_forms.a31dd14a1ce62f91235b.js?cb=1
151.101.194.133200 OK 12 kB URL HTTP/2 static.klaviyo.com/onsite/js/vendors~signup_forms.a31dd14a1ce62f91235b.js?cb=1
IP 151.101.194.133:0
File type ASCII text, with very long lines (36946)
Hash 85bd273072cb0dd22e5e638154e61527
a4e269d1594e4a29e19290f0f172cb1b1a082df4
58cd1b7f523caa43b29f0fa6d904d3c82491d4829575791ae47ed678a92efe57
GET /onsite/js/vendors~signup_forms.a31dd14a1ce62f91235b.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://everytable.com
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: NenJFBdxfWBWOrE+S1hV2t+qSUo248+eqJkZ7PVIJJ3qO0AWiZoCcLd2/S6IpamlQVrMKAwIbJs=
x-amz-request-id: A9KBBNMK73VM94KF
last-modified: Wed, 11 Jan 2023 17:07:33 GMT
etag: "14d5f5d749c7e30f46242493ff3f2893"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: rBkyHbrwP63IrT54R3TKQ6FrEMZmQNDN
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Wed, 18 Jan 2023 09:08:17 GMT
age: 10714
x-served-by: cache-lga21935-LGA, cache-bma1651-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 2835
vary: Accept-Encoding
content-length: 12427
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/sharedUtils.3de4f7002f4cb2b9833f.js?cb=1
151.101.194.133200 OK 14 kB URL HTTP/2 static.klaviyo.com/onsite/js/sharedUtils.3de4f7002f4cb2b9833f.js?cb=1
IP 151.101.194.133:0
File type Unicode text, UTF-8 text, with very long lines (36146), with no line terminators
Hash f32939851a20ce74d80fb5fa39fff073
734b7a9027ea89a333653e3dbccc8cdd4ec23029
dbafbcb2a692b78b0a88737f4f6c26177fc7c257271239338303e5c261a4f59f
GET /onsite/js/sharedUtils.3de4f7002f4cb2b9833f.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://everytable.com
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: rjXa6WzcApvwnCzg9VsgyIOa9Z/+AOdyUep+nz2C9l8Y9WmzTkf/3AyXkbcFBNADbgKH7kTMl9s=
x-amz-request-id: FA9HX3FB03RQ4E33
last-modified: Wed, 11 Jan 2023 17:07:32 GMT
etag: "41ee777bf771519f538138ed79a3786d"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: 9aF2q4NxY0Kun_gDXNyDk5ygoGoGgvoW
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Wed, 18 Jan 2023 09:08:17 GMT
age: 10715
x-served-by: cache-lga21943-LGA, cache-bma1651-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 4171
vary: Accept-Encoding
content-length: 13990
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/runtime.c56a62c53f4e6db6fc27.js?cb=1
151.101.194.133200 OK 8.1 kB URL HTTP/2 static.klaviyo.com/onsite/js/runtime.c56a62c53f4e6db6fc27.js?cb=1
IP 151.101.194.133:0
File type ASCII text, with very long lines (19473), with no line terminators
Hash b2d12e88b6c572c60c9b74f2deb9bfcd
4fce2b34e42d4c7ea1f11892db4a0740e2d7716f
ecd04754303df8546755c8d377c4bdb230dda2fbaa311d9ed88967b47836445b
GET /onsite/js/runtime.c56a62c53f4e6db6fc27.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://everytable.com
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: UXqoDMPYxUgpvtTtdp3MEwVe1Wl5M4eSdRpa7mCQpLlhzfv2NN+tHfGYUnGTfFL5rCpg8Dz4drY=
x-amz-request-id: KH5Q5A7DTKSR4857
last-modified: Tue, 17 Jan 2023 16:29:31 GMT
etag: "b0de62ba2dd02a006243db83ddd8b1e5"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: uWJWPSFJZZbv7v44vjw7yD.S7Ybwg5eg
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Wed, 18 Jan 2023 09:08:17 GMT
age: 10715
x-served-by: cache-lga21980-LGA, cache-bma1651-BMA
x-cache: HIT, HIT
x-cache-hits: 3, 4810
vary: Accept-Encoding
content-length: 8052
X-Firefox-Spdy: h2
everytable.com/css/site.min.css?v=MMxXIxFjY_V7f-141Fo9njj6vbez5woKBuHL9phDycs&v=MMxXIxFjY_V7f-141Fo9njj6vbez5woKBuHL9phDycs
104.18.207.227200 OK 28 kB URL HTTP/2 everytable.com/css/site.min.css?v=MMxXIxFjY_V7f-141Fo9njj6vbez5woKBuHL9phDycs&v=MMxXIxFjY_V7f-141Fo9njj6vbez5woKBuHL9phDycs
IP 104.18.207.227:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65411), with no line terminators
Hash 98a2fa5e39fe97303d5d16b6836982d1
6f1ca28334dee66c5266a1dd29a0114e07219778
3e419d9b4f11df4b4ef6cc74f4ac019bda1315205f5d56db16808eb45949c3e1
GET /css/site.min.css?v=MMxXIxFjY_V7f-141Fo9njj6vbez5woKBuHL9phDycs&v=MMxXIxFjY_V7f-141Fo9njj6vbez5woKBuHL9phDycs HTTP/1.1
Host: everytable.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/Account/Login?ReturnUrl=%2FAccount%2FManage%2FSubscriptions%2FSettings%3Fid%3D7f046fc3-66ee-4d37-1371-08dab2daaa26
Cookie: __cf_bm=HenybGeyttPZphMU2JjWkPfO.b35eEmM4Peifv.aUSI-1674032896-0-ASfyioJzj2JxFhmtXhxwZgSRy/taUeroY9mupOCQmHfKynF4bheZY75sUNf2/U/D7fAYzF7JEZLY8DbzdeHm0AU=; .AspNetCore.Antiforgery.9fXoN5jHCXs=CfDJ8PeGRygCdzVOucg1irvo8_MIMREruhNoRZ0UpMcKOj71Og_DIZJhbD3otUevNVGCevSfCnvE35sPHDIDVbuswl3xLtOzHcY8H76UWF_f6ZCjAQVvKeUXuAtU7woOiHGHFX9uZxLKaOQEijG0atNHtiY
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:17 GMT
content-type: text/css
content-encoding: gzip
etag: "1d92189453dfc28"
last-modified: Fri, 06 Jan 2023 04:42:24 GMT
vary: Accept-Encoding
request-context: appId=cid-v1:c62b87f9-ce69-438e-a223-f3f1437300d0
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
cf-cache-status: HIT
expires: Wed, 18 Jan 2023 13:08:17 GMT
cache-control: public, max-age=14400
server: cloudflare
cf-ray: 78b62f68ab7cb51b-OSL
X-Firefox-Spdy: h2
everytable.com/css-v2/accounts.min.css
104.18.207.227200 OK 6.4 kB URL HTTP/2 everytable.com/css-v2/accounts.min.css
IP 104.18.207.227:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (18186), with no line terminators
Hash 91568ff43b6800714ea1396f7889e1a9
63cabf44046b42254eaf176754536adb33fd9783
f7d384ea2a7f01b7422fd359478e7a57194027a7fb9a53456b3d4b270056ccf6
GET /css-v2/accounts.min.css HTTP/1.1
Host: everytable.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/Account/Login?ReturnUrl=%2FAccount%2FManage%2FSubscriptions%2FSettings%3Fid%3D7f046fc3-66ee-4d37-1371-08dab2daaa26
Cookie: __cf_bm=HenybGeyttPZphMU2JjWkPfO.b35eEmM4Peifv.aUSI-1674032896-0-ASfyioJzj2JxFhmtXhxwZgSRy/taUeroY9mupOCQmHfKynF4bheZY75sUNf2/U/D7fAYzF7JEZLY8DbzdeHm0AU=; .AspNetCore.Antiforgery.9fXoN5jHCXs=CfDJ8PeGRygCdzVOucg1irvo8_MIMREruhNoRZ0UpMcKOj71Og_DIZJhbD3otUevNVGCevSfCnvE35sPHDIDVbuswl3xLtOzHcY8H76UWF_f6ZCjAQVvKeUXuAtU7woOiHGHFX9uZxLKaOQEijG0atNHtiY
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:17 GMT
content-type: text/css
content-encoding: gzip
etag: "1d921894a01b99a"
last-modified: Fri, 06 Jan 2023 04:42:32 GMT
vary: Accept-Encoding
request-context: appId=cid-v1:c62b87f9-ce69-438e-a223-f3f1437300d0
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
cf-cache-status: HIT
expires: Wed, 18 Jan 2023 13:08:17 GMT
cache-control: public, max-age=14400
server: cloudflare
cf-ray: 78b62f693c87b51b-OSL
X-Firefox-Spdy: h2
everytable.com/icons/doordash.svg
104.18.207.227200 OK 11 kB URL HTTP/2 everytable.com/icons/doordash.svg
IP 104.18.207.227:0
File type ASCII text, with very long lines (27749), with no line terminators
Hash 0cfada57d478d97560b453019c523816
4503f32aa052c4ab0be24d9e3d383ce0ca568b0b
9a6fb085ebc0985e24aad977f126412a763fb7920f819e592e9baa1ff6362708
GET /icons/doordash.svg HTTP/1.1
Host: everytable.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/Account/Login?ReturnUrl=%2FAccount%2FManage%2FSubscriptions%2FSettings%3Fid%3D7f046fc3-66ee-4d37-1371-08dab2daaa26
Cookie: __cf_bm=HenybGeyttPZphMU2JjWkPfO.b35eEmM4Peifv.aUSI-1674032896-0-ASfyioJzj2JxFhmtXhxwZgSRy/taUeroY9mupOCQmHfKynF4bheZY75sUNf2/U/D7fAYzF7JEZLY8DbzdeHm0AU=; .AspNetCore.Antiforgery.9fXoN5jHCXs=CfDJ8PeGRygCdzVOucg1irvo8_MIMREruhNoRZ0UpMcKOj71Og_DIZJhbD3otUevNVGCevSfCnvE35sPHDIDVbuswl3xLtOzHcY8H76UWF_f6ZCjAQVvKeUXuAtU7woOiHGHFX9uZxLKaOQEijG0atNHtiY
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:17 GMT
content-type: image/svg+xml
etag: W/"1d92187f6429097"
last-modified: Fri, 06 Jan 2023 04:33:02 GMT
request-context: appId=cid-v1:c62b87f9-ce69-438e-a223-f3f1437300d0
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
cf-cache-status: HIT
expires: Wed, 18 Jan 2023 13:08:17 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 78b62f693c79b51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
172.217.21.163200 OK 471 B IP 172.217.21.163:0
Hash d547e6cc07ecb62b49cfb14f223d3b87
7f316e0778cf7e132cf376b92d1f9860e06894f5
4ceb4872fc5aa21ce6cdba296ce83f68d1b46836df05886eb76e0607358ba42c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
172.217.21.163200 OK 471 B IP 172.217.21.163:0
Hash d547e6cc07ecb62b49cfb14f223d3b87
7f316e0778cf7e132cf376b92d1f9860e06894f5
4ceb4872fc5aa21ce6cdba296ce83f68d1b46836df05886eb76e0607358ba42c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v15/pxiEyp8kv8JHgFVrFJDUc1NECPY.ttf
216.58.207.227200 OK 72 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v15/pxiEyp8kv8JHgFVrFJDUc1NECPY.ttf
IP 216.58.207.227:0
File type TrueType Font data, 13 tables, 1st "GDEF", 17 names, Microsoft, language 0x409, Copyright 2020 The Poppins Project Authors (https://github.com/itfoundry/Poppins)PoppinsRegularI\012- data
Hash ebb73297a762ffbb4de44d64e31e31bf
894b99d3789f099372f840b014bde1a26427e507
7914cd6d0865da6b39ae04deab936a3a84f376c3d36009b99ee2f924b618608e
GET /s/poppins/v15/pxiEyp8kv8JHgFVrFJDUc1NECPY.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://everytable.com
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 71573
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 15 Jan 2023 18:53:26 GMT
expires: Mon, 15 Jan 2024 18:53:26 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 05 Nov 2020 22:01:24 GMT
content-type: font/ttf
age: 224091
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v15/pxiByp8kv8JHgFVrLGT9V1tvFP-KUEg.ttf
216.58.207.227200 OK 71 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v15/pxiByp8kv8JHgFVrLGT9V1tvFP-KUEg.ttf
IP 216.58.207.227:0
File type TrueType Font data, 13 tables, 1st "GDEF", 19 names, Microsoft, language 0x409, Copyright 2020 The Poppins Project Authors (https://github.com/itfoundry/Poppins)Poppins MediumR\012- data
Hash 9c0c466ee793851011ff9b03c88f0cf4
32696a781e2698f2da8cc4bd0bafed5e3b5385a7
bf396ac07a3e294cb1f0cdfb373033aa10d191b155f071094492bd6b8422c470
GET /s/poppins/v15/pxiByp8kv8JHgFVrLGT9V1tvFP-KUEg.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://everytable.com
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 70847
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 15 Jan 2023 18:53:26 GMT
expires: Mon, 15 Jan 2024 18:53:26 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 05 Nov 2020 22:01:58 GMT
content-type: font/ttf
age: 224091
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v15/pxiByp8kv8JHgFVrLCz7V1tvFP-KUEg.ttf
216.58.207.227200 OK 71 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v15/pxiByp8kv8JHgFVrLCz7V1tvFP-KUEg.ttf
IP 216.58.207.227:0
File type TrueType Font data, 13 tables, 1st "GDEF", 17 names, Microsoft, language 0x409, Copyright 2020 The Poppins Project Authors (https://github.com/itfoundry/Poppins)PoppinsBoldITFO\012- data
Hash 2844bfaff76db264b8c8cd0838685f5f
07ed7e77862724935b1272ad5e2039106077ff9c
7ea25388b27eb7b6eebad860e6a4369dd312d70a03df359be828ffe955a6aefd
GET /s/poppins/v15/pxiByp8kv8JHgFVrLCz7V1tvFP-KUEg.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://everytable.com
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 70662
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 12 Jan 2023 11:39:52 GMT
expires: Fri, 12 Jan 2024 11:39:52 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 05 Nov 2020 22:01:55 GMT
content-type: font/ttf
age: 509305
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
everytable.com/css-v2/site.min.css?v=J5naKEkdiCTdg1B-7JhcS0Xfz9OnuDVS8g_-cPmxquY&v=J5naKEkdiCTdg1B-7JhcS0Xfz9OnuDVS8g_-cPmxquY
104.18.207.227200 OK 114 kB URL HTTP/2 everytable.com/css-v2/site.min.css?v=J5naKEkdiCTdg1B-7JhcS0Xfz9OnuDVS8g_-cPmxquY&v=J5naKEkdiCTdg1B-7JhcS0Xfz9OnuDVS8g_-cPmxquY
IP 104.18.207.227:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (64279), with no line terminators
Size 114 kB (113478 bytes)
Hash a57f45acf1283286b9e726a1f38a6d50
d37c0eef8a0ae6b59ef57bd7801810a13d3e2b16
7fb45ebac07b538e3477ee1c8a8ff3a2d761bbad16461088685c9a7b3d0dd44b
GET /css-v2/site.min.css?v=J5naKEkdiCTdg1B-7JhcS0Xfz9OnuDVS8g_-cPmxquY&v=J5naKEkdiCTdg1B-7JhcS0Xfz9OnuDVS8g_-cPmxquY HTTP/1.1
Host: everytable.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/Account/Login?ReturnUrl=%2FAccount%2FManage%2FSubscriptions%2FSettings%3Fid%3D7f046fc3-66ee-4d37-1371-08dab2daaa26
Cookie: __cf_bm=HenybGeyttPZphMU2JjWkPfO.b35eEmM4Peifv.aUSI-1674032896-0-ASfyioJzj2JxFhmtXhxwZgSRy/taUeroY9mupOCQmHfKynF4bheZY75sUNf2/U/D7fAYzF7JEZLY8DbzdeHm0AU=; .AspNetCore.Antiforgery.9fXoN5jHCXs=CfDJ8PeGRygCdzVOucg1irvo8_MIMREruhNoRZ0UpMcKOj71Og_DIZJhbD3otUevNVGCevSfCnvE35sPHDIDVbuswl3xLtOzHcY8H76UWF_f6ZCjAQVvKeUXuAtU7woOiHGHFX9uZxLKaOQEijG0atNHtiY
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:17 GMT
content-type: text/css
content-encoding: gzip
etag: "1d92189479c6ce4"
last-modified: Fri, 06 Jan 2023 04:42:28 GMT
vary: Accept-Encoding
request-context: appId=cid-v1:c62b87f9-ce69-438e-a223-f3f1437300d0
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
cf-cache-status: HIT
expires: Wed, 18 Jan 2023 13:08:17 GMT
cache-control: public, max-age=14400
server: cloudflare
cf-ray: 78b62f68bb8cb51b-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/inter/v2/UcCO3FwrK3iLTeHuS_fvQtMwCp50KnMw2boKoduKmMEVuI6fMZhrib2Bg-4.ttf
216.58.207.227200 OK 152 kB URL HTTP/2 fonts.gstatic.com/s/inter/v2/UcCO3FwrK3iLTeHuS_fvQtMwCp50KnMw2boKoduKmMEVuI6fMZhrib2Bg-4.ttf
IP 216.58.207.227:0
File type TrueType Font data, 16 tables, 1st "GDEF", 32 names, Microsoft, language 0x409, Copyright 2020 The Inter Project Authors (https://github.com/rsms/inter)Inter MediumRegular3.012\012- data
Size 152 kB (151465 bytes)
Hash e778d4859d344435c6b5f846240a12b1
96ccc2754b380bf64f2c06888a3dabfe7e155a7d
b6a2c7ae70ff287c29e8a454f5e448454deb555e4fdb724a7df23ef15a60055d
GET /s/inter/v2/UcCO3FwrK3iLTeHuS_fvQtMwCp50KnMw2boKoduKmMEVuI6fMZhrib2Bg-4.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://everytable.com
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: font/ttf
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 151465
date: Wed, 18 Jan 2023 09:08:17 GMT
expires: Thu, 18 Jan 2024 09:08:17 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 26 Jun 2020 02:38:55 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.lightboxcdn.com/vendor/79465570-44d0-4d8c-a4df-c702acc9ff75/lightbox_inline.js
104.19.211.131200 OK 1.5 kB URL HTTP/2 www.lightboxcdn.com/vendor/79465570-44d0-4d8c-a4df-c702acc9ff75/lightbox_inline.js
IP 104.19.211.131:0
File type HTML document, ASCII text, with very long lines (2002), with no line terminators
Hash 3a0d517ef52e5eb7e6bcd1b47d62e443
4ea08598fe7906c77e199ed076603df448232ec0
978d0ce6ac730908cb66077b9712a95e77be1043c355ca2cc01a4e0f295887f5
GET /vendor/79465570-44d0-4d8c-a4df-c702acc9ff75/lightbox_inline.js HTTP/1.1
Host: www.lightboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:17 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=2379
content-md5: UXrVPrJobx8ElwGowqZf6Q==
last-modified: Mon, 14 Mar 2022 21:14:14 GMT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 3fd8815c-501e-005e-59b0-29eb33000000
x-ms-version: 2009-09-19
cf-cache-status: REVALIDATED
vary: Accept-Encoding
server: cloudflare
cf-ray: 78b62f697ba7b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
everytable.com/js/site.js?v=UB_PPDCkjB0e_kmFZkJZx5uEAl8
104.18.207.227200 OK 26 kB URL HTTP/2 everytable.com/js/site.js?v=UB_PPDCkjB0e_kmFZkJZx5uEAl8
IP 104.18.207.227:0
Hash 62c8a25ba9f2f72c527692271c00e2fb
32d32e6057e6def52c4d34a1e4756c649457c422
3ced31e3f455f6129847552b08a0ce15cfb5a2c634ef232fd74c020f6541302b
GET /js/site.js?v=UB_PPDCkjB0e_kmFZkJZx5uEAl8 HTTP/1.1
Host: everytable.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/Account/Login?ReturnUrl=%2FAccount%2FManage%2FSubscriptions%2FSettings%3Fid%3D7f046fc3-66ee-4d37-1371-08dab2daaa26
Cookie: __cf_bm=HenybGeyttPZphMU2JjWkPfO.b35eEmM4Peifv.aUSI-1674032896-0-ASfyioJzj2JxFhmtXhxwZgSRy/taUeroY9mupOCQmHfKynF4bheZY75sUNf2/U/D7fAYzF7JEZLY8DbzdeHm0AU=; .AspNetCore.Antiforgery.9fXoN5jHCXs=CfDJ8PeGRygCdzVOucg1irvo8_MIMREruhNoRZ0UpMcKOj71Og_DIZJhbD3otUevNVGCevSfCnvE35sPHDIDVbuswl3xLtOzHcY8H76UWF_f6ZCjAQVvKeUXuAtU7woOiHGHFX9uZxLKaOQEijG0atNHtiY
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:17 GMT
content-type: text/javascript; charset=UTF-8
cache-control: public, max-age=31536000
content-encoding: gzip
etag: "UB_PPDCkjB0e_kmFZkJZx5uEAl8"
last-modified: Wed, 04 Jan 2023 04:41:44 GMT
vary: Accept-Encoding
request-context: appId=cid-v1:c62b87f9-ce69-438e-a223-f3f1437300d0
strict-transport-security: max-age=2592000
x-content-type-options: nosniff
x-powered-by: ASP.NET
cf-cache-status: HIT
expires: Thu, 18 Jan 2024 09:08:17 GMT
server: cloudflare
cf-ray: 78b62f68ab78b51b-OSL
X-Firefox-Spdy: h2
everytable.com/css-v2/fonts/culinaryflo.ttf?i38k5l
104.18.207.227200 OK 216 kB URL HTTP/2 everytable.com/css-v2/fonts/culinaryflo.ttf?i38k5l
IP 104.18.207.227:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, Culinary-Flo-icons-upd\012- data
Size 216 kB (215844 bytes)
Hash 119072f6b347e6fcbbd1d3a10fee089e
e12d9869036a54042068cb13a6a4dbc268717e2b
de0acc3878a04ae3a03c0c1d5f9ce52df8e54d2c1f72d06fb81af3ed73641fb5
GET /css-v2/fonts/culinaryflo.ttf?i38k5l HTTP/1.1
Host: everytable.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/css-v2/site.min.css?v=J5naKEkdiCTdg1B-7JhcS0Xfz9OnuDVS8g_-cPmxquY&v=J5naKEkdiCTdg1B-7JhcS0Xfz9OnuDVS8g_-cPmxquY
Cookie: __cf_bm=HenybGeyttPZphMU2JjWkPfO.b35eEmM4Peifv.aUSI-1674032896-0-ASfyioJzj2JxFhmtXhxwZgSRy/taUeroY9mupOCQmHfKynF4bheZY75sUNf2/U/D7fAYzF7JEZLY8DbzdeHm0AU=; .AspNetCore.Antiforgery.9fXoN5jHCXs=CfDJ8PeGRygCdzVOucg1irvo8_MIMREruhNoRZ0UpMcKOj71Og_DIZJhbD3otUevNVGCevSfCnvE35sPHDIDVbuswl3xLtOzHcY8H76UWF_f6ZCjAQVvKeUXuAtU7woOiHGHFX9uZxLKaOQEijG0atNHtiY
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:17 GMT
content-type: application/x-font-ttf
content-length: 215844
etag: "1d92187f641d824"
last-modified: Fri, 06 Jan 2023 04:33:02 GMT
request-context: appId=cid-v1:c62b87f9-ce69-438e-a223-f3f1437300d0
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
cf-cache-status: HIT
expires: Wed, 18 Jan 2023 13:08:17 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78b62f6b1f07b51b-OSL
X-Firefox-Spdy: h2
js.hs-scripts.com/9337916.js
104.17.212.204200 OK 50 kB URL HTTP/2 js.hs-scripts.com/9337916.js
IP 104.17.212.204:0
File type ASCII text, with very long lines (502)
Hash f8fc9be8c3056a9f97760a76c347daa7
ee41f2b2dcaf76f0a386edaecba4c401efc054eb
7c5017acedd172f6e208e00b389df71043b7ef5a07c2c4659bcc33f1d0f1830c
GET /9337916.js HTTP/1.1
Host: js.hs-scripts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:17 GMT
content-type: application/javascript;charset=utf-8
x-trace: 2B57E68E178A68BD78EF3F78A122F2299F7FA9073F000000000000000000
cache-control: public, max-age=60
vary: origin, Accept-Encoding
x-hubspot-correlation-id: a3483507-419e-41ee-a545-02c0014d8537
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-origin: https://everytable.com
last-modified: Tue, 17 Jan 2023 21:47:07 GMT
cf-cache-status: EXPIRED
expires: Wed, 18 Jan 2023 09:09:17 GMT
server: cloudflare
cf-ray: 78b62f696d960b31-OSL
content-encoding: br
X-Firefox-Spdy: h2
static-forms.klaviyo.com/forms/api/v6/TCzVSh/full-forms
151.101.130.133200 OK 4.2 kB URL HTTP/2 static-forms.klaviyo.com/forms/api/v6/TCzVSh/full-forms
IP 151.101.130.133:0
File type ASCII text, with very long lines (23841), with no line terminators
Hash 984ecee32e508d27d96fb3f00d77983c
e924ebf048f38949fe1502444bcbc0734bd2fc38
5ac954b5a18e66aa36a3d69fa8dde1fdaadf48d1c70a08e73b69a6aae6346519
GET /forms/api/v6/TCzVSh/full-forms HTTP/1.1
Host: static-forms.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://everytable.com
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 6bzDhNHPgvGV12c46urqZF4VX0kUWDRRA4EuXXukyCH5G1nI2/BvLXGKh44YDuj0YDAZeIwe3k4=
x-amz-request-id: 6JB0CR4C2ECSMB0B
last-modified: Fri, 16 Dec 2022 20:41:17 GMT
etag: "7f68431a46bb0d608d3b67e08162598d"
cache-control: max-age=5
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: full-forms/shared full-forms/TCzVSh custom-fonts/TCzVSh
x-amz-version-id: ZMFNu.5fR3KuBBOrirPuMMEn8PTHNaJZ
content-type: application/json
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Wed, 18 Jan 2023 09:08:18 GMT
via: 1.1 varnish
age: 692458
x-served-by: cache-bma1657-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674032898.033331,VS0,VE1
vary: Accept-Encoding
client-geo-continent: EU
client-geo-country: NO
access-control-expose-headers: client-geo-continent, client-geo-country
access-control-allow-origin: *
content-length: 4230
X-Firefox-Spdy: h2
fast.a.klaviyo.com/custom-fonts/api/v1/company-fonts/onsite?company_id=TCzVSh
151.101.194.133200 OK 307 B URL HTTP/2 fast.a.klaviyo.com/custom-fonts/api/v1/company-fonts/onsite?company_id=TCzVSh
IP 151.101.194.133:0
File type JSON data\012- , ASCII text, with very long lines (1298), with no line terminators
Hash 8cdcb2d0d0799d52d187eba7272bf530
6c07c58fb109ac21c39e3d52a4db890356ba701d
82bc278180a2059a86858f08e17bcdde7ba7484f3f7fb37d3860558570ebd32f
GET /custom-fonts/api/v1/company-fonts/onsite?company_id=TCzVSh HTTP/1.1
Host: fast.a.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://everytable.com
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers:
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
allow: GET, HEAD, OPTIONS
cache-control: max-age=10
content-encoding: gzip
content-type: application/json; charset=utf-8
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 18 Jan 2023 09:08:18 GMT
age: 6756871
x-served-by: cache-bos4628-BOS, cache-bma1670-BMA
x-cache: HIT, HIT
x-cache-hits: 1388, 1
vary: Accept-Encoding, Cookie
strict-transport-security: max-age=900
content-length: 307
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 6cfc390c95e65230e6798520be7df960
084d7efc24649c68fb6a0da6929585873796ec2a
ca8ad2a520681efa3bd19dc19b9414ae238d6ec5cf8d443103cabd16099c2117
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CA8AD2A520681EFA3BD19DC19B9414AE238D6EC5CF8D443103CABD16099C2117"
Last-Modified: Tue, 17 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3155
Expires: Wed, 18 Jan 2023 10:00:53 GMT
Date: Wed, 18 Jan 2023 09:08:18 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 6cfc390c95e65230e6798520be7df960
084d7efc24649c68fb6a0da6929585873796ec2a
ca8ad2a520681efa3bd19dc19b9414ae238d6ec5cf8d443103cabd16099c2117
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CA8AD2A520681EFA3BD19DC19B9414AE238D6EC5CF8D443103CABD16099C2117"
Last-Modified: Tue, 17 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3155
Expires: Wed, 18 Jan 2023 10:00:53 GMT
Date: Wed, 18 Jan 2023 09:08:18 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 6cfc390c95e65230e6798520be7df960
084d7efc24649c68fb6a0da6929585873796ec2a
ca8ad2a520681efa3bd19dc19b9414ae238d6ec5cf8d443103cabd16099c2117
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CA8AD2A520681EFA3BD19DC19B9414AE238D6EC5CF8D443103CABD16099C2117"
Last-Modified: Tue, 17 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3155
Expires: Wed, 18 Jan 2023 10:00:53 GMT
Date: Wed, 18 Jan 2023 09:08:18 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 6cfc390c95e65230e6798520be7df960
084d7efc24649c68fb6a0da6929585873796ec2a
ca8ad2a520681efa3bd19dc19b9414ae238d6ec5cf8d443103cabd16099c2117
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CA8AD2A520681EFA3BD19DC19B9414AE238D6EC5CF8D443103CABD16099C2117"
Last-Modified: Tue, 17 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3155
Expires: Wed, 18 Jan 2023 10:00:53 GMT
Date: Wed, 18 Jan 2023 09:08:18 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff787bd82-2d8d-4bec-acc1-41aaf9447696.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff787bd82-2d8d-4bec-acc1-41aaf9447696.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b31599f58472f3dad80798d36e5e1fa2
877be61cdea3bf743e69c716135829bf59e23d90
7cab652e997afe30417eef7d79a277147306f4ced65a8d7eaefcb83c1218c99d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff787bd82-2d8d-4bec-acc1-41aaf9447696.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7560
x-amzn-requestid: 4060d084-eecd-45c3-9299-a34dd8a56f00
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A1HELioAMFRSA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714ed-6b58cbc5370ea60e62d06e44;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: -4Rcf0WPMmWVRvIwb4PNqMzgrJuxsPVP3ujV2T-azhkMAFJTcPbBvg==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 21:51:55 GMT
age: 40583
etag: "877be61cdea3bf743e69c716135829bf59e23d90"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe52164e3-afec-433e-87ab-adb17222f1cd.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe52164e3-afec-433e-87ab-adb17222f1cd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8656702f08344d3a4658bc43a9074a1f
fba424e1d09cbdc839ca320458b51715dafbbccc
0b0ac963c377b07f843637348f3d7c41d2aca89540ab8c2b80ef5fbbf466fee8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe52164e3-afec-433e-87ab-adb17222f1cd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13848
x-amzn-requestid: 160148de-85b1-4456-a580-e079f391f979
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A0gErTIAMF_eQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714e9-52efcd642bd209373b16cf72;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ARZobaKhEsHSEJdma3SXwCn_IKwRJaDbgjHfq_p_0HypKFWoqJIOJw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 21:52:59 GMT
age: 40519
etag: "fba424e1d09cbdc839ca320458b51715dafbbccc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F861225b5-aa80-4ecb-b68c-3a62a2e3d376.gif
34.120.237.76200 OK 25 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F861225b5-aa80-4ecb-b68c-3a62a2e3d376.gif
IP 34.120.237.76:0
File type GIF image data, version 89a, 296 x 148\012- data
Hash e9e29acd071f93411556a2a1cbb076fa
6cc5c64b7e82cc5bdc148be6f4760e98cb06f414
a1d23e683f912c5c9a334df441908c7d522ae8f41c91dbb0e99e6bf5162bc54e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F861225b5-aa80-4ecb-b68c-3a62a2e3d376.gif HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 24970
x-amzn-requestid: 65ccc511-17aa-468c-a607-f531ccba1e91
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0K86HLgIAMFfxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4beb8-798eaf875ae85c5e1d73e183;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:04:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7j81MDyPkCWO5SwMKCSmfqcnvTOrH1sfFgciUIB1g3gTRCdcsyb6ew==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 03:22:17 GMT
age: 20761
etag: "6cc5c64b7e82cc5bdc148be6f4760e98cb06f414"
content-type: image/gif
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86f138af-59eb-444d-882b-80f5918f4405.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86f138af-59eb-444d-882b-80f5918f4405.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 402bdd90bc2557de4f317d4d0ec892ed
b205b0bb74fabcf1612f22db53c197b63ae4ce0c
2fa402a38832c3efe15d5fee9116b36aeea5a0012ba4e8d6477b4fa9a0368598
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86f138af-59eb-444d-882b-80f5918f4405.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11028
x-amzn-requestid: 2b2b0030-a54b-42d1-a680-69e23c4320bd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e4AteE7uIAMFSvw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c647ef-5abf38ea140446ec294cdf6c;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 07:02:07 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Mc_9uoVTGY4V5GIqVfkGHM9HhrS4mLKl58w3ET46LAwEg2BD1eqKWQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 07:21:18 GMT
age: 6420
etag: "b205b0bb74fabcf1612f22db53c197b63ae4ce0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F053123e4-9914-4404-b1e9-cb5f3e38b7a2.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F053123e4-9914-4404-b1e9-cb5f3e38b7a2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5caa7df39f82600c651046957ab6b62d
d6d6fbd676b74e487ee06248c48da87e178223e7
df3090d2e7c7c6e970fe498609d74c63e04aa80d55a26c956d1e3be5bebfafbc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F053123e4-9914-4404-b1e9-cb5f3e38b7a2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11781
x-amzn-requestid: 522a0799-2025-43cd-9d7e-08cdaa5acf11
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0vQMGZRIAMFfjg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4f8cd-697804fd5b8b3cff7d2d5a7e;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 07:12:13 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ZcErvrIx9oHVckDiZ1etMYXpi2eeCZ7Z1AmcW8ZNui8IsPLFsPhpTw==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 07:26:45 GMT
age: 6093
etag: "d6d6fbd676b74e487ee06248c48da87e178223e7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5040d384-c89f-4aa4-8652-aea8a1600738.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5040d384-c89f-4aa4-8652-aea8a1600738.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 18d44fef1be0f8ba8ae6e29788478e47
a881d39e5e2aea041f30b476f1e3d7d135ca691b
a7bd1b6e2615f6fa898d55cdd6370330b89aba74348cc3b020df81a3ee51b9d0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5040d384-c89f-4aa4-8652-aea8a1600738.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9819
x-amzn-requestid: ed88b40e-5e06-41f9-a1ba-a3bef07eb12a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0LT4G5qoAMFwFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4bf4b-513cb0eb6ec4f22f23a26da7;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:06:51 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: x6xEfCqpXziyWiy0ZxXVp8yRH_munH9cmIGQa7oB8Qf-0wLOjyPo-g==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 04:26:22 GMT
age: 16916
etag: "a881d39e5e2aea041f30b476f1e3d7d135ca691b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/klaviyo.js?company_id=TCzVSh
151.101.194.133304 Not Modified 0 B URL HTTP/2 static.klaviyo.com/onsite/js/klaviyo.js?company_id=TCzVSh
IP 151.101.194.133:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /onsite/js/klaviyo.js?company_id=TCzVSh HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: W/"bd62692cede05ba81f5516980b90cb38"
Cache-Control: max-age=0
TE: trailers
HTTP/2 304 Not Modified
date: Wed, 18 Jan 2023 09:08:18 GMT
via: 1.1 varnish
cache-control: max-age=1, stale-while-revalidate=10800
etag: W/"bd62692cede05ba81f5516980b90cb38"
age: 9380
x-served-by: cache-bma1633-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674032898.262485,VS0,VE0
vary: Accept-Encoding
X-Firefox-Spdy: h2
sc-static.net/scevent.min.js
54.230.82.240200 OK 13 kB URL HTTP/2 sc-static.net/scevent.min.js
IP 54.230.82.240:0
File type ASCII text, with very long lines (30920), with no line terminators
Hash 5c1e6ef321052f9ef17baa3b17775b15
dc24d4674334a60c2b9d1cd9aae0b6ed1bbb09ea
12a2c25fdde940fdbf0dcf5f2743c615bf8acac3ce6d19bf8b55102526bf763f
GET /scevent.min.js HTTP/1.1
Host: sc-static.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 13268
server: CloudFront
date: Wed, 18 Jan 2023 09:08:18 GMT
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Content-Type
cache-control: private, s-maxage=0, max-age=600
set-cookie: X-AB=0d6e407936704bd380072f5891d28b0e;max-age=86400;expires=Thu, 19 Jan 2023 07:52:21 GMT;Path=/scevent.min.js; Secure; SameSite=None
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3ltysOqIdKwo9FevPMyPW19itgU5p_mL0MjyFkBxaYC85JcrsEWatg==
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash a6b817487b01135ec34e616c4336fa70
3c143481c3fc6e9b7faae97dfddfa31618ab1630
8677d5e86689a12e66750b51ba6c33548644a2f3c3264304ceb151fd276ba26f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3049
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:18 GMT
Last-Modified: Wed, 18 Jan 2023 08:17:29 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 727
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0538f4fb07eb6bc1b355a40374bb4740
1b3c0be112fd24a910119791b03cf88f487ad74b
cee3ce5cae263982b9fd2c70eafb717aa44289b2ed2aea4bdcdee2e490e20299
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1528
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:18 GMT
Last-Modified: Wed, 18 Jan 2023 08:42:50 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0538f4fb07eb6bc1b355a40374bb4740
1b3c0be112fd24a910119791b03cf88f487ad74b
cee3ce5cae263982b9fd2c70eafb717aa44289b2ed2aea4bdcdee2e490e20299
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1528
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:18 GMT
Last-Modified: Wed, 18 Jan 2023 08:42:50 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0538f4fb07eb6bc1b355a40374bb4740
1b3c0be112fd24a910119791b03cf88f487ad74b
cee3ce5cae263982b9fd2c70eafb717aa44289b2ed2aea4bdcdee2e490e20299
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1528
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:18 GMT
Last-Modified: Wed, 18 Jan 2023 08:42:50 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
functionflo-cdn.azureedge.net/prd-a14b15f04c74493192bdbaed6f00ddd1/65bacecb-29ba-4fbe-9314-e14e8ceacf9c.png?updatedV2=2020-11-19_23-28-05
13.107.253.53200 OK 4.0 kB URL HTTP/2 functionflo-cdn.azureedge.net/prd-a14b15f04c74493192bdbaed6f00ddd1/65bacecb-29ba-4fbe-9314-e14e8ceacf9c.png?updatedV2=2020-11-19_23-28-05
IP 13.107.253.53:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 600 x 125, 8-bit colormap, non-interlaced\012- data
Hash fb956b1ade0ed5cc9ae60c4a64b3d25a
47cbc76d8a38a65baa1bd22f4d51b76214d07b90
ee63ed82cb0f16aefb53f1bb57fbc86bcb8a9899d860f6082ba1c44b4cf8ca3e
GET /prd-a14b15f04c74493192bdbaed6f00ddd1/65bacecb-29ba-4fbe-9314-e14e8ceacf9c.png?updatedV2=2020-11-19_23-28-05 HTTP/1.1
Host: functionflo-cdn.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 4002
content-type: application/octet-stream
content-md5: +5VrGt4O1cya5gxKZLPSWg==
last-modified: Thu, 09 Sep 2021 03:58:11 GMT
etag: 0x8D973460AAA24A0
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_MISS
x-ms-request-id: 70a84826-201e-0089-611c-2b52a0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
x-azure-ref-originshield: 0AbfHYwAAAADch+V8pAAuQJ9JgqKmf4R5QU1TMDRFREdFMTkyMQA1NDgwOWIwNS04MTQ2LTQwN2QtODdhYS00ZmFiM2FiYmE1ZjU=
x-azure-ref: 0AbfHYwAAAACJ6hfSqlxMQ6D0aT72mQUiT1NMMjMxMDUwMjA0MDMxADU0ODA5YjA1LTgxNDYtNDA3ZC04N2FhLTRmYWIzYWJiYTVmNQ==
date: Wed, 18 Jan 2023 09:08:18 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
172.217.21.163200 OK 471 B IP 172.217.21.163:0
Hash 2b02c407fd912449a1b278f0bf3d8574
817bcff5b7c0444426b19027c772bddce84cf130
67ceddcf2eef43f1c11fc85c1398c39b5ff875a93dafbf9c4526e6d3bc5eb52a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
analytics.tiktok.com/i18n/pixel/sdk.js?sdkid=CC1O9CBC77U9QPBO99P0
95.101.10.208200 OK 1.5 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/sdk.js?sdkid=CC1O9CBC77U9QPBO99P0
IP 95.101.10.208:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2294)
Hash 27183535d00834d08bfedc17e1586015
1b08f997ef9be9370d02973534a6d5aa461a773a
592d08086b5860e144912654795fd98e5a0d4a5c773ae7ad3bec13446bf1685c
GET /i18n/pixel/sdk.js?sdkid=CC1O9CBC77U9QPBO99P0 HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 2023011809081831E44AB889DBB141DABB
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb6c98ef9bb9e2c43cfc9c24c76b4c7d4a74abf1db0c843667883382382b38e81f39464e8d7faff21972f0add6d461b7df5942b3296c8aaaae5fe3de1c3cc552c01e46f7fcc0fff32f9a5da97e099de6a507a58affd72534070f332550f101c8fc8
content-encoding: gzip
content-length: 1525
x-origin-response-time: 6,23.220.104.205
x-akamai-request-id: 32811e12.200585b
expires: Wed, 18 Jan 2023 09:08:18 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 18 Jan 2023 09:08:18 GMT
x-cache: TCP_MISS from a95-101-10-204.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
set-cookie: _ttp=2KUd3mziWDMQxfMvLbHVdg7On4B; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-220-104-205.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=91, origin; dur=6, inner; dur=3
x-parent-response-time: 97,95.101.10.204
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=CBOJPRBC77UFL42EDKPG&lib=ttq
95.101.10.208200 OK 1.3 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=CBOJPRBC77UFL42EDKPG&lib=ttq
IP 95.101.10.208:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2674)
Hash 86456004e66e1f384c9c3edc6352d151
8be62aada99d1873c7171b596b31f0c1dec1ba90
6e8e92389853a847128a468310552bb6fe5b355febad6cbd556c30250e620490
GET /i18n/pixel/events.js?sdkid=CBOJPRBC77UFL42EDKPG&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202301180908185BE8072EEBFED977F3BC
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb6c98ef9bb9e2c43cfc9c24c76b4c7d4a7a923d6f2144a098f9f5b46d3b107b4c726869a590ec178449819d1473d044f97925eabf89479a9b9c1e372aad5143ac8c593724c35e5e127b1769ef6acbfe8c9b226db3348688453173dbae93c023b0e
content-encoding: gzip
content-length: 1322
x-origin-response-time: 7,23.220.104.210
x-akamai-request-id: 7560079.2005865
expires: Wed, 18 Jan 2023 09:08:18 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 18 Jan 2023 09:08:18 GMT
x-cache: TCP_MISS from a95-101-10-204.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
set-cookie: _ttp=2KUd3qR0N6QC2s9sSFDSu5ElHY8; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-220-104-210.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=91, origin; dur=7, inner; dur=4
x-parent-response-time: 98,95.101.10.204
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=CBP3UPJC77U6QAIGP7HG&lib=ttq
95.101.10.208200 OK 1.1 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=CBP3UPJC77U6QAIGP7HG&lib=ttq
IP 95.101.10.208:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2302)
Hash 1701fbc47dc30349bbafd156d9b74079
81af65e42e9a403b8f6cbc7acbab67ceb66a99d4
a8a0ab2d60e596ccfae5c9ae48acb01e2c77b5ad3c1d122fc5f79f148c07ab82
GET /i18n/pixel/events.js?sdkid=CBP3UPJC77U6QAIGP7HG&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202301180908184C4DADCB56DF7530DEFA
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb6c98ef9bb9e2c43cfc9c24c76b4c7d4a7daed674dff18cdfda89998017fef85a622475e2b889cc38ced4ec0a4a4a7fab4147de4a5477eca79c6af057045ec604ef5888baef772a1d246a089461da56ab2346f7f251e1495dc170869321ca0d42e
content-encoding: gzip
content-length: 1135
x-origin-response-time: 6,23.201.31.205
x-akamai-request-id: 115efb81.2005866
expires: Wed, 18 Jan 2023 09:08:18 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 18 Jan 2023 09:08:18 GMT
x-cache: TCP_MISS from a95-101-10-204.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
set-cookie: _ttp=2KUd3p7ugiSSUhTdRCb113xl46i; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-201-31-205.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=94, origin; dur=6, inner; dur=3
x-parent-response-time: 99,95.101.10.204
X-Firefox-Spdy: h2
tr.snapchat.com/p?pid=57a1e999-3539-4945-8be5-df7b59d3f777&ev=PAGE_VIEW&intg=gtm&pl=https%3A%2F%2Feverytable.com%2FAccount%2FLogin%3FReturnUrl%3D%252FAccount%252FManage%252FSubscriptions%252FSettings%253Fid%253D7f046fc3-66ee-4d37-1371-08dab2daaa26&bt=1d53c387&if=false&m_dcl=2226&m_fcps=2023&m_pi=2023&m_pl=0&m_pv=v2&m_rd=2635&m_sl=2630&rf=&trackId=1b6e8435-be62-4579-93b6-131fa4f16622&ts=1674032898255&u_c1=5b8b7daa-1aea-4184-94d1-0b775c228cab&u_sclid=4ab1fe44-d355-411f-b785-cb09f79393f6&u_scsid=d210d8e7-5c74-423c-90ce-e80fbed69bb6&v=2.0.0
35.190.43.134200 OK 68 B URL HTTP/2 tr.snapchat.com/p?pid=57a1e999-3539-4945-8be5-df7b59d3f777&ev=PAGE_VIEW&intg=gtm&pl=https%3A%2F%2Feverytable.com%2FAccount%2FLogin%3FReturnUrl%3D%252FAccount%252FManage%252FSubscriptions%252FSettings%253Fid%253D7f046fc3-66ee-4d37-1371-08dab2daaa26&bt=1d53c387&if=false&m_dcl=2226&m_fcps=2023&m_pi=2023&m_pl=0&m_pv=v2&m_rd=2635&m_sl=2630&rf=&trackId=1b6e8435-be62-4579-93b6-131fa4f16622&ts=1674032898255&u_c1=5b8b7daa-1aea-4184-94d1-0b775c228cab&u_sclid=4ab1fe44-d355-411f-b785-cb09f79393f6&u_scsid=d210d8e7-5c74-423c-90ce-e80fbed69bb6&v=2.0.0
IP 35.190.43.134:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
GET /p?pid=57a1e999-3539-4945-8be5-df7b59d3f777&ev=PAGE_VIEW&intg=gtm&pl=https%3A%2F%2Feverytable.com%2FAccount%2FLogin%3FReturnUrl%3D%252FAccount%252FManage%252FSubscriptions%252FSettings%253Fid%253D7f046fc3-66ee-4d37-1371-08dab2daaa26&bt=1d53c387&if=false&m_dcl=2226&m_fcps=2023&m_pi=2023&m_pl=0&m_pv=v2&m_rd=2635&m_sl=2630&rf=&trackId=1b6e8435-be62-4579-93b6-131fa4f16622&ts=1674032898255&u_c1=5b8b7daa-1aea-4184-94d1-0b775c228cab&u_sclid=4ab1fe44-d355-411f-b785-cb09f79393f6&u_scsid=d210d8e7-5c74-423c-90ce-e80fbed69bb6&v=2.0.0 HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:18 GMT
access-control-allow-origin: *
cache-control: no-cache, no-transform
set-cookie: sc_at=v2|H4sIAAAAAAAAAAXBiQ0AIAgEsIlIeJSDcc4wBsPbAuN6awRvTE5mC0EKwtnsiKLtWuJoeHWtfmMBjI8yAAAA;SameSite=None;Version=1;Comment=;Domain=.snapchat.com;Path=/;Max-Age=33696000;Secure
content-type: image/png
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 68
x-envoy-upstream-service-time: 26
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=C6L9DR44L0UCTH07NQJG&lib=ttq
95.101.10.208200 OK 1.1 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=C6L9DR44L0UCTH07NQJG&lib=ttq
IP 95.101.10.208:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2307)
Hash 85abfa1078a751a9f73b42770804cac7
101c6b87b7720cefce1f1f454bd2aa74d2d60815
555fef191c074ffedb8fe2649f685c5fbb21a3ceca0fb4c554604fbc43c2bab4
GET /i18n/pixel/events.js?sdkid=C6L9DR44L0UCTH07NQJG&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 2023011809081873D35E169F422FBEC335
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb6c98ef9bb9e2c43cfc9c24c76b4c7d4a7b464e6cb9f3c9d1abe67f306693889ba39f40157cfd53e75628776752d2f0ce59cf13059630cfd4a109ad3a9ab5a8de4dbc0cf982b8ad7cc246fd5d585f97ffb694ac18f505495bc6ab84bffdf3628ad
content-encoding: gzip
content-length: 1142
x-origin-response-time: 12,23.201.31.222
x-akamai-request-id: 1e5ab4c.200586f
expires: Wed, 18 Jan 2023 09:08:18 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 18 Jan 2023 09:08:18 GMT
x-cache: TCP_MISS from a95-101-10-204.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
set-cookie: _ttp=2KUd3oKxWDoL0JwARd0qhrX7uPv; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-201-31-222.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=91, origin; dur=12, inner; dur=2
x-parent-response-time: 103,95.101.10.204
X-Firefox-Spdy: h2
tr.snapchat.com/config/com/57a1e999-3539-4945-8be5-df7b59d3f777.js
35.190.43.134200 OK 68 kB URL HTTP/2 tr.snapchat.com/config/com/57a1e999-3539-4945-8be5-df7b59d3f777.js
IP 35.190.43.134:0
File type ASCII text, with very long lines (21891)
Hash e1e61b613ccc6da6f04c994488461bd9
057ec62dac92aad6be24f68be854b4867658f059
8ea022fb97236794811f164592c547e1c3f90bc1be2e54ca7cf8ddabbe0e5893
GET /config/com/57a1e999-3539-4945-8be5-df7b59d3f777.js HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://everytable.com
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:18 GMT
access-control-allow-origin: https://everytable.com
content-type: application/javascript
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-envoy-upstream-service-time: 0
content-encoding: gzip
vary: Accept-Encoding
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
shop.pe/widget/widget_async.js
35.227.244.1301 Moved Permanently 178 B URL HTTP/2 shop.pe/widget/widget_async.js
IP 35.227.244.1:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /widget/widget_async.js HTTP/1.1
Host: shop.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 18 Jan 2023 09:08:18 GMT
content-type: text/html
content-length: 178
location: https://d3rr3d0n31t48m.cloudfront.net/widget/widget_async.js
x-frame-options: deny
content-security-policy: frame-ancestors none;
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: no-referrer-when-downgrade
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0538f4fb07eb6bc1b355a40374bb4740
1b3c0be112fd24a910119791b03cf88f487ad74b
cee3ce5cae263982b9fd2c70eafb717aa44289b2ed2aea4bdcdee2e490e20299
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1528
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:18 GMT
Last-Modified: Wed, 18 Jan 2023 08:42:50 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
analytics.tiktok.com/i18n/pixel/events.js?sdkid=CBR8R0RC77UFL42EIVT0&lib=ttq
95.101.10.208200 OK 1.1 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=CBR8R0RC77UFL42EIVT0&lib=ttq
IP 95.101.10.208:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2311)
Hash 08dbc22a5c3cb34a989fbf6fd1715312
3b3be1e9856dddd1377505799922096d38c8241d
436a35c241a137c0aabbce2f902d0913549b7a0e75b21804e7e1fcf36152c950
GET /i18n/pixel/events.js?sdkid=CBR8R0RC77UFL42EIVT0&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202301180908188315E71111223978B70D
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb6c98ef9bb9e2c43cfc9c24c76b4c7d4a72052c87ca94a252353bf2a52462d33510693edccad23f9d9ea083830e4d18ca91e959b4caa0680c5249976fe26c244c4a221abf03d382fc8a55e39e6e1e79b37ea35b39bcf5bd47e7cbebd771bf5e727
content-encoding: gzip
content-length: 1142
x-origin-response-time: 9,23.201.31.197
x-akamai-request-id: c0d8c00.2005867
expires: Wed, 18 Jan 2023 09:08:18 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 18 Jan 2023 09:08:18 GMT
x-cache: TCP_MISS from a95-101-10-204.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
set-cookie: _ttp=2KUd3owogxM7nukmlocKvnRb677; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-201-31-197.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=119, origin; dur=9, inner; dur=3
x-parent-response-time: 128,95.101.10.204
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/DmrTnaWmiDg
172.217.21.163200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/DmrTnaWmiDg
IP 172.217.21.163:0
Hash a3ffa72f565073ca831e87553bc9de27
198d390ea7aec4afc886e8ece23f7d862d76c0c6
1f1f7004840e0f72efd08d3dad6b18f46ef44927c52120b5c91410af1f9b742b
POST /s/gts1d4/DmrTnaWmiDg HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:18 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tr.snapchat.com/cm/i?pid=57a1e999-3539-4945-8be5-df7b59d3f777&u_scsid=d210d8e7-5c74-423c-90ce-e80fbed69bb6&u_sclid=4ab1fe44-d355-411f-b785-cb09f79393f6
35.190.43.134200 OK 0 B URL HTTP/2 tr.snapchat.com/cm/i?pid=57a1e999-3539-4945-8be5-df7b59d3f777&u_scsid=d210d8e7-5c74-423c-90ce-e80fbed69bb6&u_sclid=4ab1fe44-d355-411f-b785-cb09f79393f6
IP 35.190.43.134:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/i?pid=57a1e999-3539-4945-8be5-df7b59d3f777&u_scsid=d210d8e7-5c74-423c-90ce-e80fbed69bb6&u_sclid=4ab1fe44-d355-411f-b785-cb09f79393f6 HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:18 GMT
content-type: text/html
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 0
x-envoy-upstream-service-time: 34
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
metrics.everytable.com/data?v=2&event_name=page_view&dtdc=eyJwYWdlX2xvY2F0aW9uIjoiaHR0cHM6Ly9ldmVyeXRhYmxlLmNvbS9BY2NvdW50L0xvZ2luP1JldHVyblVybD0lMkZBY2NvdW50JTJGTWFuYWdlJTJGU3Vic2NyaXB0aW9ucyUyRlNldHRpbmdzJTNGaWQlM0Q3ZjA0NmZjMy02NmVlLTRkMzctMTM3MS0wOGRhYjJkYWFhMjYiLCJwYWdlX3BhdGgiOiIvQWNjb3VudC9Mb2dpbiIsInBhZ2VfaG9zdG5hbWUiOiJldmVyeXRhYmxlLmNvbSIsInBhZ2VfcmVmZXJyZXIiOiIiLCJwYWdlX3RpdGxlIjoiTG9naW4gLSBFdmVyeXRhYmxlIiwicGFnZV9lbmNvZGluZyI6IlVURi04IiwiZXZlbnRfaWQiOiJQYWdlVmlldy4xNjc0MDMyODk3NTQ4XzFfZ3RtLmpzIn0%3D
216.239.38.21503 Service Unavailable 298 B URL HTTP/2 metrics.everytable.com/data?v=2&event_name=page_view&dtdc=eyJwYWdlX2xvY2F0aW9uIjoiaHR0cHM6Ly9ldmVyeXRhYmxlLmNvbS9BY2NvdW50L0xvZ2luP1JldHVyblVybD0lMkZBY2NvdW50JTJGTWFuYWdlJTJGU3Vic2NyaXB0aW9ucyUyRlNldHRpbmdzJTNGaWQlM0Q3ZjA0NmZjMy02NmVlLTRkMzctMTM3MS0wOGRhYjJkYWFhMjYiLCJwYWdlX3BhdGgiOiIvQWNjb3VudC9Mb2dpbiIsInBhZ2VfaG9zdG5hbWUiOiJldmVyeXRhYmxlLmNvbSIsInBhZ2VfcmVmZXJyZXIiOiIiLCJwYWdlX3RpdGxlIjoiTG9naW4gLSBFdmVyeXRhYmxlIiwicGFnZV9lbmNvZGluZyI6IlVURi04IiwiZXZlbnRfaWQiOiJQYWdlVmlldy4xNjc0MDMyODk3NTQ4XzFfZ3RtLmpzIn0%3D
IP 216.239.38.21:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 4a7f9841f209f51aaa5d6f2a452c3d62
20a4ea07c59b31546fc1e40c2b619403bb38c975
f2eb74c0937c1bfe886470765fe63b5051ce1311b61d9cc83f4664625fb07740
GET /data?v=2&event_name=page_view&dtdc=eyJwYWdlX2xvY2F0aW9uIjoiaHR0cHM6Ly9ldmVyeXRhYmxlLmNvbS9BY2NvdW50L0xvZ2luP1JldHVyblVybD0lMkZBY2NvdW50JTJGTWFuYWdlJTJGU3Vic2NyaXB0aW9ucyUyRlNldHRpbmdzJTNGaWQlM0Q3ZjA0NmZjMy02NmVlLTRkMzctMTM3MS0wOGRhYjJkYWFhMjYiLCJwYWdlX3BhdGgiOiIvQWNjb3VudC9Mb2dpbiIsInBhZ2VfaG9zdG5hbWUiOiJldmVyeXRhYmxlLmNvbSIsInBhZ2VfcmVmZXJyZXIiOiIiLCJwYWdlX3RpdGxlIjoiTG9naW4gLSBFdmVyeXRhYmxlIiwicGFnZV9lbmNvZGluZyI6IlVURi04IiwiZXZlbnRfaWQiOiJQYWdlVmlldy4xNjc0MDMyODk3NTQ4XzFfZ3RtLmpzIn0%3D HTTP/1.1
Host: metrics.everytable.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Cookie: __cf_bm=HenybGeyttPZphMU2JjWkPfO.b35eEmM4Peifv.aUSI-1674032896-0-ASfyioJzj2JxFhmtXhxwZgSRy/taUeroY9mupOCQmHfKynF4bheZY75sUNf2/U/D7fAYzF7JEZLY8DbzdeHm0AU=; _ga_J6VQVGRPP3=GS1.1.1674032898.1.0.1674032898.60.0.0; _ga=GA1.1.1928454776.1674032898; _ga_K6GDNDDD8S=GS1.1.1674032898.1.0.1674032898.0.0.0; _gcl_au=1.1.1474101618.1674032898
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 503 Service Unavailable
content-type: text/html; charset=UTF-8
referrer-policy: no-referrer
content-length: 298
date: Wed, 18 Jan 2023 09:08:18 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
172.217.21.163200 OK 471 B IP 172.217.21.163:0
Hash 2b02c407fd912449a1b278f0bf3d8574
817bcff5b7c0444426b19027c772bddce84cf130
67ceddcf2eef43f1c11fc85c1398c39b5ff875a93dafbf9c4526e6d3bc5eb52a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 5cf4d2f816b765ec911ce39ed46dbc8f
b85da611ce513ac5839b2b9ce0ad405605dc82a7
86c428fb0d4e82d58d5af29670c9a899bfb1e938a26b89cb9c1ebc0ebe66c397
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5701
Cache-Control: max-age=102114
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:18 GMT
Etag: "63c68c9f-13a"
Expires: Thu, 19 Jan 2023 13:30:12 GMT
Last-Modified: Tue, 17 Jan 2023 11:55:11 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 314
js.monitor.azure.com/scripts/b/ai.2.min.js
13.107.253.53200 OK 53 kB URL HTTP/2 js.monitor.azure.com/scripts/b/ai.2.min.js
IP 13.107.253.53:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (65410)
Hash 1c94629b22851b7bdfa98c7a71171093
32491ad96d9143017dcb6d50ef8f9e1e0555fa0f
58c5bebaf5d42417ba2731b8717d3570e048bc19724ffbb3741a355295823699
GET /scripts/b/ai.2.min.js HTTP/1.1
Host: js.monitor.azure.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://everytable.com
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=1800, immutable, no-transform
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 9j1it/ejcfI34cTV1VuCzA==
last-modified: Mon, 31 Oct 2022 18:35:27 GMT
etag: 0x8DABB6EAE654DEC
x-cache: TCP_HIT
x-ms-request-id: 006e6483-501e-0087-6d17-2b1ed0000000
x-ms-version: 2009-09-19
x-ms-meta-aijssdksrc: [cdn]/scripts/b/ai.2.8.9.min.js
x-ms-meta-aijssdkver: 2.8.9
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,x-ms-meta-aijssdksrc,x-ms-meta-aijssdkver,x-ms-meta-lastmodified,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref-originshield: 0obXHYwAAAADwujlsHKloSreErA+KCDCbRlJBMjMxMDUwNDE3MDQ1AGYxY2E3M2Q0LTg4ODMtNGNhZi1hYmRjLWZlMmQ1NjdhZmI5Ng==
x-azure-ref: 0ArfHYwAAAABMzbAvQBmHQp9sf0NxLLrRT1NMMjMxMDUwMjAzMDUxAGYxY2E3M2Q0LTg4ODMtNGNhZi1hYmRjLWZlMmQ1NjdhZmI5Ng==
date: Wed, 18 Jan 2023 09:08:18 GMT
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/identify_c4832.js
95.101.10.208200 OK 31 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/identify_c4832.js
IP 95.101.10.208:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash e35cd3aeb48075134b13d5d593e609af
b967aced0b33616a54a9b7d5d3d092f28b9cca81
e25f7cb45c4d46dc9ebcf4cbe5209c87765cb94c15384780899eee7d888273e6
GET /i18n/pixel/static/identify_c4832.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Cookie: _ttp=2KUd3owogxM7nukmlocKvnRb677
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20230112175825795F92399DF9E7BC6845
x-tt-trace-host: 01213c9428e1dc2e706424a5e4830ae2753a9403fe7ed2020932fc61a3c47c96784adda24a6c56428140d39df42ee71252f6133830581f45dad09e0f84f6c427e5570f8f5241c1349d3294ee56c52eab748dbda5cfd0ecad2a022e79233890d27b
content-encoding: gzip
content-length: 30930
date: Wed, 18 Jan 2023 09:08:18 GMT
x-cache: TCP_MEM_HIT from a95-101-10-204.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=1
x-akamai-request-id: 2005b83
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 19b9744d2002b640146377ad96973cd4
4d7f6520fb7782a611a0074189e0f764870c741b
3af5c42eef318bc9c2227dc1d8558f212f4841dfb8745bb015b15b7f208857d5
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 18 Jan 2023 09:08:18 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 18 Jan 2023 04:13:19 GMT
Expires: Thu, 19 Jan 2023 04:13:19 GMT
ETag: "4d7f6520fb7782a611a0074189e0f764870c741b"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash 54fb804023eb887d6302ea9d0df50de3
cfb4a7a37aad1e3e33c21e565ff92087b056960e
c0f9e814c93734287ce70a9027fa002fc7ce186591dd26dbfe304aa8182666a4
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=138180
Date: Wed, 18 Jan 2023 09:08:18 GMT
Etag: "63c72a02-1d7"
Expires: Thu, 19 Jan 2023 23:31:18 GMT
Last-Modified: Tue, 17 Jan 2023 23:06:42 GMT
Server: ECS (nyb/1DD2)
X-Cache: Miss from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Na5Gb_MvOTjdBBeAvt88aFgK2LVjDnOwJVGzR2UzwMwdVMAAyenVkA==
Age: 1476
analytics.tiktok.com/api/v2/pixel
95.101.10.208200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 95.101.10.208:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 881
Origin: https://everytable.com
Connection: keep-alive
Referer: https://everytable.com/
Cookie: _ttp=2KUd3owogxM7nukmlocKvnRb677
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202301180908189B0F14DAA643EDC0A736
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb63e0cc6ef75346b7fe762d86e787a4517253b5d4dc9332706a7caff5e5c3856f28845c1f7444927470dbfd0030381da675fa0be841a5b10a363a3ab8a0f6b2bba47840a9c16b0cc4c2d4c60558dbc5389
expires: Wed, 18 Jan 2023 09:08:18 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 18 Jan 2023 09:08:18 GMT
x-cache: TCP_MISS from a95-101-10-204.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=15, cdn-cache; desc=MISS, edge; dur=5, origin; dur=107
x-origin-response-time: 108,95.101.10.204
x-akamai-request-id: 2005bf9
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
95.101.10.208200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 95.101.10.208:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 878
Origin: https://everytable.com
Connection: keep-alive
Referer: https://everytable.com/
Cookie: _ttp=2KUd3owogxM7nukmlocKvnRb677
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20230118090818C7CDD2B91A8279C5B05A
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb63e0cc6ef75346b7fe762d86e787a4517099f2822b63c06fe4e63b3f43fa01d0a912820b560362df4c976f0aeb63229b8ff4af1d753bd413411164a803efd3c14213c45d595364a7ab6637134954c162b
expires: Wed, 18 Jan 2023 09:08:18 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 18 Jan 2023 09:08:18 GMT
x-cache: TCP_MISS from a95-101-10-204.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=16, cdn-cache; desc=MISS, edge; dur=6, origin; dur=108
x-origin-response-time: 108,95.101.10.204
x-akamai-request-id: 2005bfd
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
95.101.10.208200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 95.101.10.208:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 878
Origin: https://everytable.com
Connection: keep-alive
Referer: https://everytable.com/
Cookie: _ttp=2KUd3owogxM7nukmlocKvnRb677
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20230118090818EEF8014BC468C6CA8B36
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb6c98ef9bb9e2c43cfc9c24c76b4c7d4a74fbeafdf4916dcaf021060327d66987cdf437088609ef6c28eaf07d76513e125cff1fd39bdd530bb8f72df72e0a410a0c91476731f7f466cfac8d90f118bff8af58c3716c17bfcf8aa63bd438550cb65
x-origin-response-time: 20,23.220.104.212
x-akamai-request-id: 69dc6a86.2005c06
expires: Wed, 18 Jan 2023 09:08:18 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 18 Jan 2023 09:08:18 GMT
x-cache: TCP_MISS from a95-101-10-204.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-cache-remote: TCP_MISS from a23-220-104-212.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=99, origin; dur=20, inner; dur=17
x-parent-response-time: 112,95.101.10.204
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
95.101.10.208200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 95.101.10.208:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 878
Origin: https://everytable.com
Connection: keep-alive
Referer: https://everytable.com/
Cookie: _ttp=2KUd3owogxM7nukmlocKvnRb677
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20230118090818A54F801945C3C249BD5C
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb6c98ef9bb9e2c43cfc9c24c76b4c7d4a7c0d36d4cb94d540d43fc7b0f0a808e66d0c2d83fe96c7683b92a17f8c63b93e5bfc829c9e91fa2d5893d2137bb6f5f3199609ef6977762303cd7dc95c103029c3b44c4deaaa0c7a78ed2532292354433
x-origin-response-time: 19,23.220.104.213
x-akamai-request-id: a8dec457.2005c21
expires: Wed, 18 Jan 2023 09:08:18 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 18 Jan 2023 09:08:18 GMT
x-cache: TCP_MISS from a95-101-10-204.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-cache-remote: TCP_MISS from a23-220-104-213.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=95, origin; dur=19, inner; dur=16
x-parent-response-time: 110,95.101.10.204
X-Firefox-Spdy: h2
www.lightboxcdn.com/z9g/t.gif?c=1674032898665&h=everytable.com&e=p&u=43506
104.19.211.131200 OK 35 B URL HTTP/2 www.lightboxcdn.com/z9g/t.gif?c=1674032898665&h=everytable.com&e=p&u=43506
IP 104.19.211.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /z9g/t.gif?c=1674032898665&h=everytable.com&e=p&u=43506 HTTP/1.1
Host: www.lightboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:18 GMT
content-type: image/gif
content-length: 35
cf-bgj: imgq:85,h2pri
cf-polished: status=not_needed
content-md5: KNaBTzCeoon4R8ac+RGUxg==
etag: 0x8D69B87D5A1B25F
last-modified: Tue, 26 Feb 2019 01:15:02 GMT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-meta-cbmodifiedtime: Tue, 26 Feb 2019 00:59:40 GMT
x-ms-request-id: db46fedb-401e-008b-4976-efee1f000000
x-ms-version: 2009-09-19
cf-cache-status: HIT
age: 1657238
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78b62f715f4ab4f7-OSL
X-Firefox-Spdy: h2
www.lightboxcdn.com/static/fb_lightbox.2.1.5.css?cb=637828892545775197
104.19.211.131200 OK 1.1 kB URL HTTP/2 www.lightboxcdn.com/static/fb_lightbox.2.1.5.css?cb=637828892545775197
IP 104.19.211.131:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (4116), with no line terminators
Hash 7f320a391f34bae2b1ca35ae7a7bbac6
fd69b4c8f7ff5c53b43e8010f76cda7f344c4ce1
53d9d2e5beb5c9ad9a56742ae4453fb0f4238422e7c943015ad538495479ec4d
GET /static/fb_lightbox.2.1.5.css?cb=637828892545775197 HTTP/1.1
Host: www.lightboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:18 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=6016
content-md5: q4B4xYJoZwx9ikt94o1nCA==
last-modified: Wed, 10 Apr 2019 19:06:17 GMT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-meta-cbmodifiedtime: Wed, 10 Apr 2019 18:50:43 GMT
x-ms-request-id: a495ada4-801e-0057-35b0-29f1bd000000
x-ms-version: 2009-09-19
cf-cache-status: HIT
age: 40870
expires: Sat, 18 Feb 2023 09:08:18 GMT
cache-control: public, max-age=2678400
vary: Accept-Encoding
server: cloudflare
cf-ray: 78b62f715f44b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
172.217.21.163200 OK 472 B IP 172.217.21.163:0
Hash 6a6b2d9466c78838d5b89a24b1afc5f1
056b045d2648e975609cc689aace2cebf56dc4b8
87f1afd429d569be0ae89952298d447806d8c9d543b4ed8d2bc80cd9dc3d125d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.google-analytics.com/g/collect?v=2&tid=G-K6GDNDDD8S>m=2oe1a1&_p=2060759634&cid=1928454776.1674032898&ul=en-us&sr=1280x1024&_s=1&sid=1674032898&sct=1&seg=0&dl=https%3A%2F%2Feverytable.com%2FAccount%2FLogin%3FReturnUrl%3D%252FAccount%252FManage%252FSubscriptions%252FSettings%253Fid%253D7f046fc3-66ee-4d37-1371-08dab2daaa26&dt=Login%20-%20Everytable&en=page_view&_fv=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-K6GDNDDD8S>m=2oe1a1&_p=2060759634&cid=1928454776.1674032898&ul=en-us&sr=1280x1024&_s=1&sid=1674032898&sct=1&seg=0&dl=https%3A%2F%2Feverytable.com%2FAccount%2FLogin%3FReturnUrl%3D%252FAccount%252FManage%252FSubscriptions%252FSettings%253Fid%253D7f046fc3-66ee-4d37-1371-08dab2daaa26&dt=Login%20-%20Everytable&en=page_view&_fv=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-K6GDNDDD8S>m=2oe1a1&_p=2060759634&cid=1928454776.1674032898&ul=en-us&sr=1280x1024&_s=1&sid=1674032898&sct=1&seg=0&dl=https%3A%2F%2Feverytable.com%2FAccount%2FLogin%3FReturnUrl%3D%252FAccount%252FManage%252FSubscriptions%252FSettings%253Fid%253D7f046fc3-66ee-4d37-1371-08dab2daaa26&dt=Login%20-%20Everytable&en=page_view&_fv=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://everytable.com
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://everytable.com
date: Wed, 18 Jan 2023 09:08:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/g/collect?v=2&tid=G-J6VQVGRPP3&cid=1928454776.1674032898>m=2oe1a1&aip=1
74.125.131.155204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-J6VQVGRPP3&cid=1928454776.1674032898>m=2oe1a1&aip=1
IP 74.125.131.155:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-J6VQVGRPP3&cid=1928454776.1674032898>m=2oe1a1&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://everytable.com
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://everytable.com
date: Wed, 18 Jan 2023 09:08:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
172.217.21.163200 OK 472 B IP 172.217.21.163:0
Hash 6a6b2d9466c78838d5b89a24b1afc5f1
056b045d2648e975609cc689aace2cebf56dc4b8
87f1afd429d569be0ae89952298d447806d8c9d543b4ed8d2bc80cd9dc3d125d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dx.mountain.com/spx?dxver=4.0.0&shaid=33105&tdr=&plh=https%3A%2F%2Feverytable.com%2FAccount%2FLogin%3FReturnUrl%3D%252FAccount%252FManage%252FSubscriptions%252FSettings%253Fid%253D7f046fc3-66ee-4d37-1371-08dab2daaa26&cb=18592533477564000term=value
44.238.33.223200 OK 4.1 kB URL HTTP/1.1 dx.mountain.com/spx?dxver=4.0.0&shaid=33105&tdr=&plh=https%3A%2F%2Feverytable.com%2FAccount%2FLogin%3FReturnUrl%3D%252FAccount%252FManage%252FSubscriptions%252FSettings%253Fid%253D7f046fc3-66ee-4d37-1371-08dab2daaa26&cb=18592533477564000term=value
IP 44.238.33.223:0
File type ASCII text, with very long lines (15350), with no line terminators
Hash 88a656fecfad7c6b3e5a03a256c99cf1
93c6e0717c79d0ecdc8e2910fc52e1900a1753a6
7e9cd81dfd4429b4c762960ba3daf6f9cc4f5e5a23840976713e78c0895f840f
GET /spx?dxver=4.0.0&shaid=33105&tdr=&plh=https%3A%2F%2Feverytable.com%2FAccount%2FLogin%3FReturnUrl%3D%252FAccount%252FManage%252FSubscriptions%252FSettings%253Fid%253D7f046fc3-66ee-4d37-1371-08dab2daaa26&cb=18592533477564000term=value HTTP/1.1
Host: dx.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-encoding: gzip
content-type: application/javascript;charset=utf-8
date: Wed, 18 Jan 2023 09:08:18 GMT
x-envoy-upstream-service-time: 1
server: istio-envoy
connection: close
transfer-encoding: chunked
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 2ba43181ef28ed2dca6f0614e3524724
debbdc8706a9c572baf0bd9aa6fc68bd6a46f9f4
f95a250c7c0f433146479595728b91c6e8f91c6890e51e35d7803ef8d8c71352
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4735
Cache-Control: max-age=107221
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:19 GMT
Etag: "63c6a459-138"
Expires: Thu, 19 Jan 2023 14:55:20 GMT
Last-Modified: Tue, 17 Jan 2023 13:36:25 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 312
analytics.tiktok.com/api/v2/pixel
95.101.10.208200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 95.101.10.208:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 878
Origin: https://everytable.com
Connection: keep-alive
Referer: https://everytable.com/
Cookie: _ttp=2KUd3owogxM7nukmlocKvnRb677
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20230118090818877DC27A8D422E6A332D
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb63e0cc6ef75346b7fe762d86e787a4517eda0aa38a364c4672c038f761f4882422bf049aaa1e78cf1c9a239d5383d38a00a1b9f99686ecf077df3aa9fd3d47937443793da91ebd94b700515142a55d5c3
expires: Wed, 18 Jan 2023 09:08:19 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 18 Jan 2023 09:08:19 GMT
x-cache: TCP_MISS from a95-101-10-204.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=16, cdn-cache; desc=MISS, edge; dur=6, origin; dur=382
x-origin-response-time: 383,95.101.10.204
x-akamai-request-id: 2005c1c
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
95.101.10.208200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 95.101.10.208:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 885
Origin: https://everytable.com
Connection: keep-alive
Referer: https://everytable.com/
Cookie: _ttp=2KUd3owogxM7nukmlocKvnRb677
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202301180908185429DD2E62E9B4AFFC5D
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb63e0cc6ef75346b7fe762d86e787a45175e1677ba675c16b1fb717f689be7791a3e7095ad8963cc4dcf8dd3a17591388182a011a82f4ccb81b5c42c4d40280a2e2497f9723894f66190d785ff621eefea
expires: Wed, 18 Jan 2023 09:08:19 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 18 Jan 2023 09:08:19 GMT
x-cache: TCP_MISS from a95-101-10-204.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=15, cdn-cache; desc=MISS, edge; dur=7, origin; dur=386
x-origin-response-time: 387,95.101.10.204
x-akamai-request-id: 2005c22
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.0.157200 OK 0 B IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:18 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=J15arV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czk4WHBNJTJCUk1ZcDJWUW5uUzdkayUyRkMlMkJ5Q085Ynl1bzdkeXdQR1oyMU1ybnQ; expires=Mon, 12 Feb 2024 09:08:19 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 305238
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 18bf6f110d4e88ee265f6da6d21bd123
21b106133c400cd4f7faf212f0d377515fc894bd
dc7c5bcb1d7e58289f8b618ff21ddbbda12536f8635135280ccae84cfe7e4e9e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4211
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:19 GMT
Last-Modified: Wed, 18 Jan 2023 07:58:08 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 18bf6f110d4e88ee265f6da6d21bd123
21b106133c400cd4f7faf212f0d377515fc894bd
dc7c5bcb1d7e58289f8b618ff21ddbbda12536f8635135280ccae84cfe7e4e9e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3953
Cache-Control: max-age=159774
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:19 GMT
Etag: "63c774b0-13a"
Expires: Fri, 20 Jan 2023 05:31:13 GMT
Last-Modified: Wed, 18 Jan 2023 04:25:20 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 314
flask.nextdoor.com/pixel?pid=5f69ef89-e0fe-464d-bcb7-2fd11afb0a6a&ev=PAGE_VIEW&pl=https%3A%2F%2Feverytable.com%2FAccount%2FLogin%3FReturnUrl%3D%252FAccount%252FManage%252FSubscriptions%252FSettings%253Fid%253D7f046fc3-66ee-4d37-1371-08dab2daaa26&ndclid=&rf=&sem=&tm=1
52.26.190.231204 No Content 0 B URL HTTP/2 flask.nextdoor.com/pixel?pid=5f69ef89-e0fe-464d-bcb7-2fd11afb0a6a&ev=PAGE_VIEW&pl=https%3A%2F%2Feverytable.com%2FAccount%2FLogin%3FReturnUrl%3D%252FAccount%252FManage%252FSubscriptions%252FSettings%253Fid%253D7f046fc3-66ee-4d37-1371-08dab2daaa26&ndclid=&rf=&sem=&tm=1
IP 52.26.190.231:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel?pid=5f69ef89-e0fe-464d-bcb7-2fd11afb0a6a&ev=PAGE_VIEW&pl=https%3A%2F%2Feverytable.com%2FAccount%2FLogin%3FReturnUrl%3D%252FAccount%252FManage%252FSubscriptions%252FSettings%253Fid%253D7f046fc3-66ee-4d37-1371-08dab2daaa26&ndclid=&rf=&sem=&tm=1 HTTP/1.1
Host: flask.nextdoor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 18 Jan 2023 09:08:19 GMT
server: istio-envoy
context-id: c492145e-6b6a-4213-abe2-6471062fd82f
x-envoy-upstream-service-time: 1
X-Firefox-Spdy: h2
lightboxapi.azurewebsites.net/z9gd/43506/everytable.com/jsonp/z?cb=1674032898670&callback=jQuery171045311904708829265_1674032898645&_=1674032898671
20.40.202.0200 OK 498 B URL HTTP/1.1 lightboxapi.azurewebsites.net/z9gd/43506/everytable.com/jsonp/z?cb=1674032898670&callback=jQuery171045311904708829265_1674032898645&_=1674032898671
IP 20.40.202.0:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (438), with no line terminators
Hash 1ac071b1fcdf3a84b979eda2026f67b8
bdb43426a21e78076b4c53c8f36a629348777103
53368ae8d10be4948fc5e4a1242395408b20be983eb5f273bd5dfcf61dde49ce
GET /z9gd/43506/everytable.com/jsonp/z?cb=1674032898670&callback=jQuery171045311904708829265_1674032898645&_=1674032898671 HTTP/1.1
Host: lightboxapi.azurewebsites.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Date: Wed, 18 Jan 2023 09:08:19 GMT
Server: Microsoft-IIS/10.0
Content-Encoding: gzip
Set-Cookie: TiPMix=98.86423984726831; path=/; HttpOnly; Domain=lightboxapi.azurewebsites.net; Max-Age=3600; Secure; SameSite=None
x-ms-routing-name=self; path=/; HttpOnly; Domain=lightboxapi.azurewebsites.net; Max-Age=3600; Secure; SameSite=None
Transfer-Encoding: chunked
Vary: Accept-Encoding
X-Powered-By: ASP.NET
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 04ea1f9c02443967f753a54f5948a9da
139ee299946fd9625f2a52909df8d690f37eef2b
73fa992212c47a2d4dc99c03b5707c5149785f430f35b53a4595de17f5c286b8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 09:08:19 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 16 Jan 2023 23:26:24 GMT
Expires: Mon, 23 Jan 2023 23:26:23 GMT
Etag: "139ee299946fd9625f2a52909df8d690f37eef2b"
Cache-Control: max-age=482883,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78b62f74a865b4f9-OSL
d3rr3d0n31t48m.cloudfront.net/widget/widget_async.js
143.204.55.116200 OK 905 B URL HTTP/2 d3rr3d0n31t48m.cloudfront.net/widget/widget_async.js
IP 143.204.55.116:0
File type ASCII text, with very long lines (559)
Hash 5fe77ab6ebdc796e0e96c6eff1142983
0966208d260484614dc9375db843c52873da4daa
971a2f71cd058a33c52b892498b1e4066d3ccee9d0694fe2140214cdac2ac007
GET /widget/widget_async.js HTTP/1.1
Host: d3rr3d0n31t48m.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 905
last-modified: Wed, 11 Jan 2023 22:02:41 GMT
content-encoding: gzip
x-amz-meta-mtime: 1673474559.72
accept-ranges: bytes
server: AmazonS3
date: Wed, 18 Jan 2023 09:06:07 GMT
cache-control: max-age=3600, public
etag: "5fe77ab6ebdc796e0e96c6eff1142983"
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GVmWJZ9T-yNjO9GTUIUzbzI2ZwbSIwFWBZdHAVM9wbT4wSz8Jb7EOw==
age: 132
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 97c18a1f4ad26bed14c097c5bb7459f0
2c6ee86fc895d1b3a4b5b8e4caf9cb71a54ab790
d6817e25966a6106335f3e3c2eecb392cc3cff8e148e1dfadf7c26254cc8e8dc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1293
Cache-Control: max-age=138012
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:19 GMT
Etag: "63c72a12-1d7"
Expires: Thu, 19 Jan 2023 23:28:31 GMT
Last-Modified: Tue, 17 Jan 2023 23:06:58 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
142.250.74.14200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.14:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Wed, 18 Jan 2023 07:45:20 GMT
expires: Wed, 18 Jan 2023 09:45:20 GMT
cache-control: public, max-age=7200
age: 4979
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/raRVPOI4L3s
172.217.21.163200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/raRVPOI4L3s
IP 172.217.21.163:0
Hash b9491be4ac44194579ecc35d24cbf6d3
147c28e53ee0c210aab1c5ff6d939e34ee80496c
f253d853cb312da5d5e5f6590c298032e75c17db4e8d19fe03432b1af4083143
POST /s/gts1d4/raRVPOI4L3s HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:19 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
172.217.21.163200 OK 471 B IP 172.217.21.163:0
Hash 38de5599544ffa789bad3f8686808c5e
fa442ea8ec124d47130fe75d0e848330a279e19e
d0344819ecf4cb1795fcd668d5f1a806121a48e174588ecd2eb8751595ac61ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js.hs-banner.com/v2/9337916/banner.js
172.64.154.85200 OK 91 kB URL HTTP/2 js.hs-banner.com/v2/9337916/banner.js
IP 172.64.154.85:0
File type ASCII text, with very long lines (64983)
Hash 555088fad19c83cf6a38ec2018486a0d
ebb6a33f417e006d05ec108b0ab2634134ba0a89
3548ac6174175541ded83bb5be2d6c86e6e1e939f4fca5c8f2b263169a0ac130
GET /v2/9337916/banner.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:19 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: rnRLTmXdKsefnXs9EkJ2nsL7MqrAldn23fCXIcyRsoSa2PEnh1hvRMftJjyLqdT9CuUmkp2ueJ0=
x-amz-request-id: 2PGPQCXYBGV64TJG
last-modified: Thu, 08 Dec 2022 23:05:54 GMT
etag: W/"0a03e0ff077afa3c1bf58c236c4715c9"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: UuH7bfkWMFNGz3kCr4VZBn1cqBD3Uiki
access-control-allow-origin: https://www.everytable.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin, Accept-Encoding
expires: Wed, 18 Jan 2023 09:13:19 GMT
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 78b62f6c3e08b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
edge.fullstory.com/s/fs.js
35.201.112.186200 OK 67 kB URL HTTP/2 edge.fullstory.com/s/fs.js
IP 35.201.112.186:0
File type ASCII text, with very long lines (65250)
Hash ec7dfec851441d232bc8a84fc45a5414
60812690843620747014ba281e14d3e2f060f09c
f32c5f6559d068761c399771d559e37360f6dc9f61573e6206aa1dd4e6e1b987
GET /s/fs.js HTTP/1.1
Host: edge.fullstory.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://everytable.com
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtNA5iRXxfpVQvZjK0Pd4hQNPfktvPvEWh7p6kIovFW30wMbrh6xH2KKccidaA4Jplj2xP8OSUBi2bBdS_WtUE-sFwzSuxd
x-goog-generation: 1673966405157927
x-goog-metageneration: 1
x-goog-stored-content-encoding: br
x-goog-stored-content-length: 67293
content-encoding: br
x-goog-hash: crc32c=gaiv9w==, md5=7H3+yFFEHSMryKhPxFpUFA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 67293
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Wed, 18 Jan 2023 08:22:50 GMT
expires: Wed, 18 Jan 2023 09:22:50 GMT
cache-control: public, max-age=3600,no-transform
age: 2729
last-modified: Tue, 17 Jan 2023 14:40:05 GMT
etag: "ec7dfec851441d232bc8a84fc45a5414"
content-type: application/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-J6VQVGRPP3&cid=1928454776.1674032898>m=2oe1a1&aip=1&z=1652437292
142.250.74.35200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-J6VQVGRPP3&cid=1928454776.1674032898>m=2oe1a1&aip=1&z=1652437292
IP 142.250.74.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-J6VQVGRPP3&cid=1928454776.1674032898>m=2oe1a1&aip=1&z=1652437292 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 18 Jan 2023 09:08:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bat.bing.com/bat.js
204.79.197.200200 OK 12 kB IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39124), with no line terminators
Hash d925a898de26295fdebfc90203ef46fa
77dd3f5893b76530e08058d50e8f9aef017e80c7
8f4a413fec7e48f5ac290f4596fef33b6396e7fb31080ec0203a5ec817d140c8
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11460
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 05 Dec 2022 17:15:50 GMT
accept-ranges: bytes
etag: "027e538cd8d91:0"
vary: Accept-Encoding
set-cookie: MUID=0A4A83873BE06D94291B911A3AB76C62; domain=.bing.com; expires=Mon, 12-Feb-2024 09:08:19 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 582CB6EB3799438187ABE1921457EEC0 Ref B: OSL30EDGE0421 Ref C: 2023-01-18T09:08:19Z
date: Wed, 18 Jan 2023 09:08:18 GMT
X-Firefox-Spdy: h2
100.20.58.101/is
100.20.58.101200 OK 32 B IP 100.20.58.101:0
File type ASCII text, with no line terminators
Hash ef2beba473e7ea6e07d62c6284475fd2
fa66757aaa67d59990bb02aeb3bd8daf606817f7
74959a9e0d135127cc251e00a4cfb9995b86fdcb34d3700fa4861bde54cb7850
Analyzer Verdict Alert quad9 Sinkholed
GET /is HTTP/1.1
Host: 100.20.58.101
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everytable.com/
Origin: https://everytable.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Wed, 18 Jan 2023 09:08:19 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, x-requested-with, X-Custom-Header
x-application-context: application:prod:8080
content-type: text/plain;charset=utf-8
content-length: 32
x-envoy-upstream-service-time: 1
server: istio-envoy
connection: close
d3rr3d0n31t48m.cloudfront.net/widget/triggerRunner.js?v=c317b78
143.204.55.116200 OK 3.8 kB URL HTTP/2 d3rr3d0n31t48m.cloudfront.net/widget/triggerRunner.js?v=c317b78
IP 143.204.55.116:0
File type ASCII text, with very long lines (583)
Hash 4e4eb70579f718d53da34d3b6405324e
6240a0bbd72e2d56739176c5b2d8040e7379cc87
e462290f2010e0c7c1e7cd4bd157e156d36aa5a24005a99d0330a2d2d2c3a091
GET /widget/triggerRunner.js?v=c317b78 HTTP/1.1
Host: d3rr3d0n31t48m.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 3772
date: Wed, 11 Jan 2023 22:03:19 GMT
last-modified: Wed, 11 Jan 2023 22:02:41 GMT
etag: "4e4eb70579f718d53da34d3b6405324e"
cache-control: max-age=2592000, public
content-encoding: gzip
x-amz-meta-mtime: 1673474559.71
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bUG2nCdMvqoUkkCLlO3AXG96w89xgqvLoCYn-58Rm5HrGMPJywAOJA==
age: 558301
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/raRVPOI4L3s
172.217.21.163200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/raRVPOI4L3s
IP 172.217.21.163:0
Hash b9491be4ac44194579ecc35d24cbf6d3
147c28e53ee0c210aab1c5ff6d939e34ee80496c
f253d853cb312da5d5e5f6590c298032e75c17db4e8d19fe03432b1af4083143
POST /s/gts1d4/raRVPOI4L3s HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:19 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
d3rr3d0n31t48m.cloudfront.net/widget/widget.js?v=efe3a76
143.204.55.116200 OK 48 kB URL HTTP/2 d3rr3d0n31t48m.cloudfront.net/widget/widget.js?v=efe3a76
IP 143.204.55.116:0
File type ASCII text, with very long lines (778)
Hash 32a621c55ab01227f344fdce9574e580
87184750a937dd618334f00dcb472f6610e26398
dfc910ad331cc1d10cca749263a404ef5783398ef08285d4c4bea661159dce6b
GET /widget/widget.js?v=efe3a76 HTTP/1.1
Host: d3rr3d0n31t48m.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 48054
date: Wed, 11 Jan 2023 22:03:20 GMT
last-modified: Wed, 11 Jan 2023 22:02:41 GMT
etag: "32a621c55ab01227f344fdce9574e580"
cache-control: max-age=2592000, public
content-encoding: gzip
x-amz-meta-mtime: 1673474558.05
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jI7JuFopbbOgw0WgYMb-RXkz_a-1CAn8jDTx9GB8qERSqta9UIYAdw==
age: 558300
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
172.217.21.163200 OK 471 B IP 172.217.21.163:0
Hash 38de5599544ffa789bad3f8686808c5e
fa442ea8ec124d47130fe75d0e848330a279e19e
d0344819ecf4cb1795fcd668d5f1a806121a48e174588ecd2eb8751595ac61ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bat.bing.com/action/0?ti=149011776&tm=gtm002&Ver=2&mid=c75f0431-d2cf-4c4c-85d6-991b3b1ad5d3&sid=a6d692c0970f11edbc0f477006713676&vid=a6d6b8e0970f11edbdbabbca9a3344d5&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Login%20-%20Everytable&p=https%3A%2F%2Feverytable.com%2FAccount%2FLogin%3FReturnUrl%3D%252FAccount%252FManage%252FSubscriptions%252FSettings%253Fid%253D7f046fc3-66ee-4d37-1371-08dab2daaa26&r=<=2225&evt=pageLoad&sv=1&rn=862729
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=149011776&tm=gtm002&Ver=2&mid=c75f0431-d2cf-4c4c-85d6-991b3b1ad5d3&sid=a6d692c0970f11edbc0f477006713676&vid=a6d6b8e0970f11edbdbabbca9a3344d5&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Login%20-%20Everytable&p=https%3A%2F%2Feverytable.com%2FAccount%2FLogin%3FReturnUrl%3D%252FAccount%252FManage%252FSubscriptions%252FSettings%253Fid%253D7f046fc3-66ee-4d37-1371-08dab2daaa26&r=<=2225&evt=pageLoad&sv=1&rn=862729
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=149011776&tm=gtm002&Ver=2&mid=c75f0431-d2cf-4c4c-85d6-991b3b1ad5d3&sid=a6d692c0970f11edbc0f477006713676&vid=a6d6b8e0970f11edbdbabbca9a3344d5&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Login%20-%20Everytable&p=https%3A%2F%2Feverytable.com%2FAccount%2FLogin%3FReturnUrl%3D%252FAccount%252FManage%252FSubscriptions%252FSettings%253Fid%253D7f046fc3-66ee-4d37-1371-08dab2daaa26&r=<=2225&evt=pageLoad&sv=1&rn=862729 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=0A560D24D868677535701FB9D93F666F; domain=.bing.com; expires=Mon, 12-Feb-2024 09:08:19 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 57A231F54829478888E7DAFE1250ACAD Ref B: OSL30EDGE0421 Ref C: 2023-01-18T09:08:19Z
date: Wed, 18 Jan 2023 09:08:19 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1c44931e67b0f0e64b5513f3d9769487
7ab63cc0dbdae65ab7090cb1de9eed59c93f4896
f8fc135735b05a3ff4c42478199e3f4eb884f4f34a3d3c8a6d6d62db6ebbc07c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F8FC135735B05A3FF4C42478199E3F4EB884F4F34A3D3C8A6D6D62DB6EBBC07C"
Last-Modified: Mon, 16 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3074
Expires: Wed, 18 Jan 2023 09:59:33 GMT
Date: Wed, 18 Jan 2023 09:08:19 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash 4560de95d893639cab0e823f8d97ec13
1eedbed201e7731e5b5882d6f8f4f18b0312cdbd
79a69a6009429a8a30f073ff901f15e5a56632d30f55930a8dab8767a20d9b1d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 18 Jan 2023 09:08:19 GMT
Last-Modified: Wed, 18 Jan 2023 07:40:24 GMT
Server: ECS (nyb/1D19)
X-Cache: Miss from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 9D0ZHQy1r3rGTWe60O1XGxbX3YgVJARI-qhPHPMVJK29LcxWyfLoGw==
Age: 5275
vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html
143.204.55.118200 OK 111 kB URL HTTP/2 vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html
IP 143.204.55.118:0
Size 111 kB (111428 bytes)
Hash ba663361220c3eff5fc633f61ca2fed1
8b4342ed5ad423ab2f7a47430544ab853c109814
345cb644d8fb660994acb916f85792970fcde97b21a5ffd7430bdb560138ded1
GET /box-5e66f98b4ee957db209dc6f63e3d59dd.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Sat, 03 Dec 2022 04:42:02 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "e0652b84b7b3b650769c759fc520c3f8"
last-modified: Thu, 01 Dec 2022 13:36:28 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: gS0KmAGazWOac-urrs7DEil7pzyj-abQdV90wWlwqaSWYBGbBBVG4Q==
age: 3990377
X-Firefox-Spdy: h2
bat.bing.com/p/action/149011776.js
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/149011776.js
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/149011776.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=0FAC7B19F0146B0925866984F1436A2A; domain=.bing.com; expires=Mon, 12-Feb-2024 09:08:19 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 573F00F8380D43A3A52F26F27452294F Ref B: OSL30EDGE0421 Ref C: 2023-01-18T09:08:19Z
date: Wed, 18 Jan 2023 09:08:19 GMT
X-Firefox-Spdy: h2
widget-mediator.zopim.com/s/W/ws/qc1EQidA-l6DlehA/c/1674032899669
52.57.216.104101 Switching Protocols 0 B URL HTTP/1.1 widget-mediator.zopim.com/s/W/ws/qc1EQidA-l6DlehA/c/1674032899669
IP 52.57.216.104:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/W/ws/qc1EQidA-l6DlehA/c/1674032899669 HTTP/1.1
Host: widget-mediator.zopim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://everytable.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: CnjwBn5+kTDvCQ4ELyJjVA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Wed, 18 Jan 2023 09:08:20 GMT
Connection: upgrade
Set-Cookie: AWSALB=u58mdKeTgAdjahVJ6fMRrm4puxIVBy6LtfWSWMjiqpxWcWGP04sNfBZ66smOEIWLhiSH0gsjLyQ6hNwdCbs98j4uG/P3xBgRZ7OutNG6AFRGszSGKqvw3+3r/UBI; Expires=Wed, 25 Jan 2023 09:08:20 GMT; Path=/
AWSALBCORS=u58mdKeTgAdjahVJ6fMRrm4puxIVBy6LtfWSWMjiqpxWcWGP04sNfBZ66smOEIWLhiSH0gsjLyQ6hNwdCbs98j4uG/P3xBgRZ7OutNG6AFRGszSGKqvw3+3r/UBI; Expires=Wed, 25 Jan 2023 09:08:20 GMT; Path=/; SameSite=None; Secure
Upgrade: websocket
Sec-WebSocket-Accept: FYpcVpc+tf4gkSC5QrcG8OGOfKk=
Sec-WebSocket-Version: 13
WebSocket-Server: uWebSockets
api.hubapi.com/hs-script-loader-public/v1/config/adwords/enhanced-conversion-event-settings/json?portalId=9337916
104.17.204.204200 OK 2 B URL HTTP/2 api.hubapi.com/hs-script-loader-public/v1/config/adwords/enhanced-conversion-event-settings/json?portalId=9337916
IP 104.17.204.204:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
GET /hs-script-loader-public/v1/config/adwords/enhanced-conversion-event-settings/json?portalId=9337916 HTTP/1.1
Host: api.hubapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://everytable.com
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:20 GMT
content-type: application/json;charset=utf-8
content-length: 2
cf-ray: 78b62f78cd910b61-OSL
access-control-allow-origin: https://everytable.com
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-max-age: 180
x-hubspot-correlation-id: 146c491f-5ee5-429e-824a-53c7cd7a44db
x-trace: 2BBFAFAC36D24814200D6AA2F06F4B7DEBB6DBA5DA000000000000000000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=isaFrmfpnITM%2Fp%2FXrJfRwGX6UD0qhTH8t6XDseKlsA6iDAFcFNgzxgPtLHz2TE679rX6%2BS%2FB%2FBy4T6x97XEj1OHABeKJgkAY1BGB44l%2FzRUAe393YoXW6ufP98V%2Fm9p2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
vc.hotjar.io/sessions/1643316?s=0.25&r=0.1888690917895326
54.230.111.64204 No Content 0 B URL HTTP/2 vc.hotjar.io/sessions/1643316?s=0.25&r=0.1888690917895326
IP 54.230.111.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sessions/1643316?s=0.25&r=0.1888690917895326 HTTP/1.1
Host: vc.hotjar.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://everytable.com
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
cache-control: no-store
date: Wed, 18 Jan 2023 09:08:20 GMT
server: Python/3.7 aiohttp/3.5.4
x-cache: Miss from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bPJQN0qJFc8VwGoECs4Fh2BPMwwxsnx81OqKgHGuW_4vTfhXwpBcdA==
X-Firefox-Spdy: h2
rs.fullstory.com/rec/page
35.186.194.58200 OK 1.5 kB URL HTTP/2 rs.fullstory.com/rec/page
IP 35.186.194.58:0
File type JSON data\012- , ASCII text, with very long lines (4559)
Hash c6779991361ae9443d2a4f0afb7a74b5
8617f8cd52055207ff023ac34073e534381c84c9
dc374abd09d53b4b597c485bccff16d7d264207a2ce0ea11da04677d90accce0
POST /rec/page HTTP/1.1
Host: rs.fullstory.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 405
Origin: https://everytable.com
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://everytable.com
content-encoding: gzip
content-type: application/json; charset=utf-8
date: Wed, 18 Jan 2023 09:08:20 GMT
content-length: 1484
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
js.hs-analytics.net/analytics/1674032700000/9337916.js
104.17.70.176200 OK 21 kB URL HTTP/2 js.hs-analytics.net/analytics/1674032700000/9337916.js
IP 104.17.70.176:0
File type ASCII text, with very long lines (64655)
Hash b9df183c867433baacf1071ae647f08b
98c1855dc5fc65eb562d4a524f8a67f8e6e04c48
b5dbcd2b08e2daa9b1c3788aaf5b3fd0dbc2075aade4b3b4e6470304fd4adfa0
GET /analytics/1674032700000/9337916.js HTTP/1.1
Host: js.hs-analytics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:20 GMT
content-type: text/javascript
x-amz-id-2: MPcxROA1yu0EHWcMF4Kd6DyvhvjEn+Uy/bVx+clx1OxAGMUd82PmRCFsFmp1LFInoRxBIiZ9tzS7Md/AeWEDUg==
x-amz-request-id: 9T3PX9P5YTW0NN5E
last-modified: Tue, 17 Jan 2023 22:36:10 GMT
etag: W/"59564092403bfc63a3919052ea161839"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: null
access-control-allow-credentials: false
vary: origin, Accept-Encoding
expires: Wed, 18 Jan 2023 09:13:19 GMT
cf-cache-status: MISS
server: cloudflare
cf-ray: 78b62f774db6b51e-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/classic/fda6cd35495c75f83508d9d2e77ee33d.mp3
104.18.72.113206 Partial Content 20 kB URL HTTP/2 static.zdassets.com/web_widget/latest/classic/fda6cd35495c75f83508d9d2e77ee33d.mp3
IP 104.18.72.113:0
File type Audio file with ID3 version 2.3.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, JntStereo\012- data
Hash f11ce9e8f40a392830217253fe75d6de
89ba57fcc360da34756c127acba15a8b23267fc6
05069cc62b394b6ecc2daf3c51b4b2ba7f6cc8735988e8234487234af47eceee
GET /web_widget/latest/classic/fda6cd35495c75f83508d9d2e77ee33d.mp3 HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
date: Wed, 18 Jan 2023 09:08:20 GMT
content-type: audio/mpeg; charset=utf-8
content-length: 19698
x-amz-id-2: g87hI3qvp6u/eYrvF5ekvnlnd/ZKIURFxO017tHaVZdhHodAb1MX6TjMAHxlaiIHpETLXLY/I+c=
x-amz-request-id: X429XSBWRFS5FTSC
x-amz-replication-status: COMPLETED
last-modified: Wed, 09 Mar 2022 06:43:05 GMT
etag: "f11ce9e8f40a392830217253fe75d6de"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Thu, 09 Mar 2023 06:43:04 GMT
x-amz-version-id: ngeCnQamEcRo6kgSgz9pTF5J7hCEPwJW
cf-cache-status: HIT
age: 1000469
content-range: bytes 0-19697/19698
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ktcYoazAM6sNc5wg5oR%2BIUviWksNd0L9XaUZsAaczjoMVyUbV3xN3gTTRVnLtT3pmG8g3KDyf53urz6oB6mGNwRmOGlnfQMMCMfE3TXIhNrnV65VCjq8NiKhMxLryRWQAQdfh7o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 78b62f7b0ab11c16-OSL
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Nunito+Sans:ital,wght@0,200;0,300;0,400;0,600;0,700;0,800;0,900&family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900&display=swap
142.250.74.106200 OK 52 kB URL HTTP/2 fonts.googleapis.com/css2?family=Nunito+Sans:ital,wght@0,200;0,300;0,400;0,600;0,700;0,800;0,900&family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900&display=swap
IP 142.250.74.106:0
Hash 0381f0de187cd31296f5f2542de07fbd
1d26d9fbbcae3632b5552ebc52571a702c4bd107
6d7468fc8a767a4de6db76667442f9cb4ff009315a1ce2a7f25b1d8571b5f717
GET /css2?family=Nunito+Sans:ital,wght@0,200;0,300;0,400;0,600;0,700;0,800;0,900&family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 18 Jan 2023 09:08:18 GMT
date: Wed, 18 Jan 2023 09:08:18 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
telemetrics.klaviyo.com/v1/metric
54.230.111.60204 No Content 0 B URL HTTP/2 telemetrics.klaviyo.com/v1/metric
IP 54.230.111.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v1/metric HTTP/1.1
Host: telemetrics.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 127
Origin: https://everytable.com
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Wed, 18 Jan 2023 09:08:20 GMT
x-amzn-requestid: aee540f7-1cbf-4134-8955-7e787aa91ce1
access-control-allow-origin: *
x-amz-apigw-id: e7mIsG5cIAMF01Q=
x-amzn-trace-id: Root=1-63c7b704-4f1d9ee41efe2c193c41e334;Sampled=0
x-cache: Miss from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 95eh291QKZRQw_VLF8jPRBk_dUA59UsALpRDllYk0wYzwmgi0ZCDrQ==
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1306860636089278&ev=PageView&dl=https%3A%2F%2Feverytable.com%2FAccount%2FLogin%3FReturnUrl%3D%252FAccount%252FManage%252FSubscriptions%252FSettings%253Fid%253D7f046fc3-66ee-4d37-1371-08dab2daaa26&rl=&if=false&ts=1674032899976&sw=1280&sh=1024&v=2.9.92&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&par[0]=%7B%22extractorID%22%3A%22671298560073362%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22USD%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%22715991828901440%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22USD%22%7D%7D%7D&par[2]=%7B%22extractorID%22%3A%222353998471388957%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&par[3]=%7B%22extractorID%22%3A%22419731128966087%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&fbp=fb.1.1674032899975.1110148332&it=1674032899755&coo=false&eid=PageView.1674032897548_1_gtm.js&tm=1&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1306860636089278&ev=PageView&dl=https%3A%2F%2Feverytable.com%2FAccount%2FLogin%3FReturnUrl%3D%252FAccount%252FManage%252FSubscriptions%252FSettings%253Fid%253D7f046fc3-66ee-4d37-1371-08dab2daaa26&rl=&if=false&ts=1674032899976&sw=1280&sh=1024&v=2.9.92&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&par[0]=%7B%22extractorID%22%3A%22671298560073362%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22USD%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%22715991828901440%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22USD%22%7D%7D%7D&par[2]=%7B%22extractorID%22%3A%222353998471388957%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&par[3]=%7B%22extractorID%22%3A%22419731128966087%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&fbp=fb.1.1674032899975.1110148332&it=1674032899755&coo=false&eid=PageView.1674032897548_1_gtm.js&tm=1&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1306860636089278&ev=PageView&dl=https%3A%2F%2Feverytable.com%2FAccount%2FLogin%3FReturnUrl%3D%252FAccount%252FManage%252FSubscriptions%252FSettings%253Fid%253D7f046fc3-66ee-4d37-1371-08dab2daaa26&rl=&if=false&ts=1674032899976&sw=1280&sh=1024&v=2.9.92&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&par[0]=%7B%22extractorID%22%3A%22671298560073362%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22USD%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%22715991828901440%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22USD%22%7D%7D%7D&par[2]=%7B%22extractorID%22%3A%222353998471388957%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&par[3]=%7B%22extractorID%22%3A%22419731128966087%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&fbp=fb.1.1674032899975.1110148332&it=1674032899755&coo=false&eid=PageView.1674032897548_1_gtm.js&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Wed, 18 Jan 2023 09:08:20 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
172.217.21.163200 OK 472 B IP 172.217.21.163:0
Hash f96ac6d23518cd0485e1d41d276d8184
58de3ad32744f1f92b86e9f60c29094c7ba5b115
a1b6546dc485dbbfc652a64b11655450987e9a391e44b05a6eb20b323ede242c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
172.217.21.163200 OK 472 B IP 172.217.21.163:0
Hash e1c7515ba5231aaae042ef63071a8562
676673d88597e11f572ac38844b18562ab57b920
002b5adabb3fb37aa6c0f18adee2f221a770e217fe95a027fcf8b8fe84794a19
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-81353517-1&cid=1928454776.1674032898&jid=558193405&_u=YADAAUAAAAAAACAAI~&z=96399784
216.58.211.4200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-81353517-1&cid=1928454776.1674032898&jid=558193405&_u=YADAAUAAAAAAACAAI~&z=96399784
IP 216.58.211.4:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-81353517-1&cid=1928454776.1674032898&jid=558193405&_u=YADAAUAAAAAAACAAI~&z=96399784 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 18 Jan 2023 09:08:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/724140880/?random=1674032900021&cv=11&fst=1674032900021&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Feverytable.com%2FAccount%2FLogin%3FReturnUrl%3D%252FAccount%252FManage%252FSubscriptions%252FSettings%253Fid%253D7f046fc3-66ee-4d37-1371-08dab2daaa26&tiba=Login%20-%20Everytable&did=dZTQ1Zm&gdid=dZTQ1Zm&auid=1474101618.1674032898&data=event%3Dgtag.config&rfmt=3&fmt=4
142.250.74.162200 OK 951 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/724140880/?random=1674032900021&cv=11&fst=1674032900021&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Feverytable.com%2FAccount%2FLogin%3FReturnUrl%3D%252FAccount%252FManage%252FSubscriptions%252FSettings%253Fid%253D7f046fc3-66ee-4d37-1371-08dab2daaa26&tiba=Login%20-%20Everytable&did=dZTQ1Zm&gdid=dZTQ1Zm&auid=1474101618.1674032898&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 142.250.74.162:0
File type ASCII text, with very long lines (2105), with no line terminators
Hash 26132afc4ffbb7a6310578e3fa2b8890
4250820d8ed73a34b3a3cbcf7f43296b8f1eac22
50e9d63af3a17a5b8189cb4d3382c775674e61c6b69a3c97d6bdbf21ae3b3097
GET /pagead/viewthroughconversion/724140880/?random=1674032900021&cv=11&fst=1674032900021&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Feverytable.com%2FAccount%2FLogin%3FReturnUrl%3D%252FAccount%252FManage%252FSubscriptions%252FSettings%253Fid%253D7f046fc3-66ee-4d37-1371-08dab2daaa26&tiba=Login%20-%20Everytable&did=dZTQ1Zm&gdid=dZTQ1Zm&auid=1474101618.1674032898&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 18 Jan 2023 09:08:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 951
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 18-Jan-2023 09:23:20 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
172.217.21.163200 OK 472 B IP 172.217.21.163:0
Hash f96ac6d23518cd0485e1d41d276d8184
58de3ad32744f1f92b86e9f60c29094c7ba5b115
a1b6546dc485dbbfc652a64b11655450987e9a391e44b05a6eb20b323ede242c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
script.hotjar.com/modules.5bc662be9faceb9038da.js
143.204.55.40200 OK 472 B URL HTTP/2 script.hotjar.com/modules.5bc662be9faceb9038da.js
IP 143.204.55.40:0
Hash 43904744042cec16f81766250b8ebf49
8393568a2e9c86dafc36563c76703704c7cd86c6
d2359c7cce5176a68cd627ba7e39dfceff78036c6840cd468994df8519f1fb27
GET /modules.5bc662be9faceb9038da.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68986
date: Tue, 17 Jan 2023 10:32:05 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "80bbbdc2c462ad6e55b13b4def9dd8de"
last-modified: Tue, 17 Jan 2023 10:31:25 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: VyiM156h7LCYdMhvuyb1y75gGsnS6rnikDzgky6WIB49bFsJmJMe6g==
age: 81374
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/classic/web-widget-chat-incoming-message-notification-c772b95.js
104.18.72.113200 OK 1.3 kB URL HTTP/2 static.zdassets.com/web_widget/latest/classic/web-widget-chat-incoming-message-notification-c772b95.js
IP 104.18.72.113:0
File type ASCII text, with no line terminators
Hash 20de6bcd31bb5ddbccbe50a83140d59b
40759438ea4300660a509a002cc5e5d313b86c3a
1129d5c15d893104935a763aaf9773ad4f6d577a01653558f1976adc21a0afde
GET /web_widget/latest/classic/web-widget-chat-incoming-message-notification-c772b95.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:20 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: 44Q6c9qcrrzsh62PgGED+HaVaDmVa9FsxS9fvf9HUrvKrjZvrBmM9rkBjwz+1tTpdUlOM/YMZg8=
x-amz-request-id: SKM09P1T7B8DC3K3
x-amz-replication-status: COMPLETED
last-modified: Mon, 16 Jan 2023 08:33:00 GMT
etag: W/"659635f5ad1b6653645380f46aa42236"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 16 Jan 2024 08:32:59 GMT
x-amz-version-id: tSHO6t6CTquBGVaFW9qkZhaCHSUTp.CC
cf-cache-status: HIT
age: 24084
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Mk%2BgLI5FwVqsBUTuMXilV59%2F8GZEVSOMhAFkozHZXC5AYxiFxpEeBNRcUOk1XItcDHHUbOyHolWx8QTHOKMSLqY%2BTTkgPsGK5pxjcgF4KcYVVNis3g5BOXg8S1hcEwhkBgHGOGA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 78b62f7a9a481c16-OSL
content-encoding: br
X-Firefox-Spdy: h2
gs.mountain.com/gs
52.12.117.226200 OK 144 B IP 52.12.117.226:0
File type ASCII text, with no line terminators
Hash 398977d875b70fa1b879633df3146c11
4a041be9ca59c17c3b692fcefb311c0fdf667280
d2e17c4bfeeac5e83eacce215ee6080df4cec55dbe341d46bb9b3031f733c8a1
GET /gs HTTP/1.1
Host: gs.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Cookie: guid=a78f403c-970f-11ed-959b-b93958090842
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Wed, 18 Jan 2023 09:08:21 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, x-requested-with, X-Custom-Header
x-application-context: application:prod:8080
content-type: application/javascript;charset=utf-8
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
cache-control: public, max-age=31536000
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
content-length: 144
x-envoy-upstream-service-time: 1
server: istio-envoy
connection: close
px.mountain.com/st?ga_tracking_id=UA-81353517-1&ga_client_id=1928454776.1674032898&shpt=Login%20-%20Everytable&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-81353517-1%22%2C%22ga_client_id%22%3A%221928454776.1674032898%22%2C%22shpt%22%3A%22Login%20-%20Everytable%22%2C%22dcm_cid%22%3A%221674032898.1%22%2C%22dcm_gid%22%3A%221592631622.1674032900%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A8%2C%22getClientIdByGA%22%3A%22FAILED%22%2C%22getClientIdByTracker%22%3A%22FAILED%22%2C%22getClientIdByGAData%22%3A%22FAILED%22%2C%22getClientIdByCookie%22%3A%22FAILED%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%2C%22message%22%3A%7B%7D%7D&dcm_cid=1674032898.1&dcm_gid=1592631622.1674032900&dxver=4.0.0&shaid=33105&plh=https%3A%2F%2Feverytable.com%2FAccount%2FLogin%3FReturnUrl%3D%252FAccount%252FManage%252FSubscriptions%252FSettings%253Fid%253D7f046fc3-66ee-4d37-1371-08dab2daaa26&shadditional=googletagmanager%3Dtrue%2Cga4%3Dtrue%2Ccriteo%3Dtrue&cb=1674032900984744&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1674032901686
52.89.99.220200 OK 1.3 kB URL HTTP/1.1 px.mountain.com/st?ga_tracking_id=UA-81353517-1&ga_client_id=1928454776.1674032898&shpt=Login%20-%20Everytable&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-81353517-1%22%2C%22ga_client_id%22%3A%221928454776.1674032898%22%2C%22shpt%22%3A%22Login%20-%20Everytable%22%2C%22dcm_cid%22%3A%221674032898.1%22%2C%22dcm_gid%22%3A%221592631622.1674032900%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A8%2C%22getClientIdByGA%22%3A%22FAILED%22%2C%22getClientIdByTracker%22%3A%22FAILED%22%2C%22getClientIdByGAData%22%3A%22FAILED%22%2C%22getClientIdByCookie%22%3A%22FAILED%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%2C%22message%22%3A%7B%7D%7D&dcm_cid=1674032898.1&dcm_gid=1592631622.1674032900&dxver=4.0.0&shaid=33105&plh=https%3A%2F%2Feverytable.com%2FAccount%2FLogin%3FReturnUrl%3D%252FAccount%252FManage%252FSubscriptions%252FSettings%253Fid%253D7f046fc3-66ee-4d37-1371-08dab2daaa26&shadditional=googletagmanager%3Dtrue%2Cga4%3Dtrue%2Ccriteo%3Dtrue&cb=1674032900984744&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1674032901686
IP 52.89.99.220:0
File type ASCII text, with very long lines (5249), with no line terminators
Hash 541535275c2bf8b2bdbfae9e37e6de4b
34cb565edec7deabfcdbed8e02f86a1ae47e1524
3295e688f25eaf2a6f3b50b3ee4b9f4def96fc767959b105a2add721a7ccebe0
GET /st?ga_tracking_id=UA-81353517-1&ga_client_id=1928454776.1674032898&shpt=Login%20-%20Everytable&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-81353517-1%22%2C%22ga_client_id%22%3A%221928454776.1674032898%22%2C%22shpt%22%3A%22Login%20-%20Everytable%22%2C%22dcm_cid%22%3A%221674032898.1%22%2C%22dcm_gid%22%3A%221592631622.1674032900%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A8%2C%22getClientIdByGA%22%3A%22FAILED%22%2C%22getClientIdByTracker%22%3A%22FAILED%22%2C%22getClientIdByGAData%22%3A%22FAILED%22%2C%22getClientIdByCookie%22%3A%22FAILED%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%2C%22message%22%3A%7B%7D%7D&dcm_cid=1674032898.1&dcm_gid=1592631622.1674032900&dxver=4.0.0&shaid=33105&plh=https%3A%2F%2Feverytable.com%2FAccount%2FLogin%3FReturnUrl%3D%252FAccount%252FManage%252FSubscriptions%252FSettings%253Fid%253D7f046fc3-66ee-4d37-1371-08dab2daaa26&shadditional=googletagmanager%3Dtrue%2Cga4%3Dtrue%2Ccriteo%3Dtrue&cb=1674032900984744&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1674032901686 HTTP/1.1
Host: px.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Cookie: guid=a78f403c-970f-11ed-959b-b93958090842
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Wed, 18 Jan 2023 09:08:22 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: tt="H4sIAAAAAAAAAKtW8guKNzY2NDCNN7IwtlCyMtBRKlOyMtJRQhY0NDM3MTA2sjQwMrYw1kHSYm5pDNRSCwCbIC2gRgAAAA==";Domain=px.mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
rt="MzMxMDU6MTY3NDAzMjkwMg==";Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
guid=a78f403c-970f-11ed-959b-b93958090842;Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
x-envoy-upstream-service-time: 16
server: istio-envoy
connection: close
transfer-encoding: chunked
ocsp.globalsign.com/gsgccr3dvtlsca2020
151.101.194.133200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 151.101.194.133:0
Hash 3bf56dea134e47a01e888b7e1e328a52
93a14bccb697a2be00d1ffddc469e032d402450a
c611315fbb062b7ea3a029325e85f6fdf3b91916f7ab89151958c718ea6f3f22
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1414
Server: nginx
Content-Type: application/ocsp-response
Expires: Sun, 22 Jan 2023 05:48:13 GMT
ETag: "93a14bccb697a2be00d1ffddc469e032d402450a"
Last-Modified: Wed, 18 Jan 2023 05:48:14 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Wed, 18 Jan 2023 09:08:22 GMT
Age: 1693
X-Served-By: cache-qpg1235-QPG, cache-bma1658-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 12, 27
X-Timer: S1674032903.622877,VS0,VE0
ocsp.globalsign.com/gsgccr3dvtlsca2020
151.101.194.133200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 151.101.194.133:0
Hash 3bf56dea134e47a01e888b7e1e328a52
93a14bccb697a2be00d1ffddc469e032d402450a
c611315fbb062b7ea3a029325e85f6fdf3b91916f7ab89151958c718ea6f3f22
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1414
Server: nginx
Content-Type: application/ocsp-response
Expires: Sun, 22 Jan 2023 05:48:13 GMT
ETag: "93a14bccb697a2be00d1ffddc469e032d402450a"
Last-Modified: Wed, 18 Jan 2023 05:48:14 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Wed, 18 Jan 2023 09:08:22 GMT
Age: 1694
X-Served-By: cache-qpg1235-QPG, cache-bma1672-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 12, 22
X-Timer: S1674032903.621330,VS0,VE0
match.adsrvr.org/track/cmf/generic?ttd_pid=steelhouse&ttd_tpi=1&ttd_puid=a78f403c-970f-11ed-959b-b93958090842&gdpr=&gdpr_consent=
15.197.193.217200 OK 70 B URL HTTP/2 match.adsrvr.org/track/cmf/generic?ttd_pid=steelhouse&ttd_tpi=1&ttd_puid=a78f403c-970f-11ed-959b-b93958090842&gdpr=&gdpr_consent=
IP 15.197.193.217:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 58a7930cd4577fc33c35828c271eab8f
406e57f86dc101e10f3a57be1e2f7b93c4580474
8d70b3e6badb6973663b398d297bb32eaedd08826a1af98d0a1cfce5324ffce0
GET /track/cmf/generic?ttd_pid=steelhouse&ttd_tpi=1&ttd_puid=a78f403c-970f-11ed-959b-b93958090842&gdpr=&gdpr_consent= HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:22 GMT
content-type: image/gif
content-length: 70
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
shopper.shop.pe/input.js
35.190.54.17200 OK 9.5 kB IP 35.190.54.17:0
File type ASCII text, with very long lines (17023)
Hash fdcd9925bddc743dbd80237fca59be7a
333ca26cae74b2593fd46ddda8d25fa04090399a
724ea38fc3c56289f8636566e5ec3bae138a2a5683fdd120c441124960399ff5
GET /input.js HTTP/1.1
Host: shopper.shop.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvhiFEGa81EireW2uwKfH1On66nDuoyM6X4TmZHnYSgQ22_8BaKrzWfuyllAiBUEGhFDPvu0ylp-c-YvxQov32YNyVlAI-z
x-goog-generation: 1667301507739079
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 8877
content-encoding: gzip
x-goog-hash: crc32c=d2ag2w==, md5=J3ZxvcdcpDssSEZNarQnjw==
x-goog-storage-class: STANDARD
accept-ranges: bytes
vary: Accept-Encoding
content-length: 8877
access-control-allow-origin: *
access-control-expose-headers: Access-Control-Allow-Origin
server: UploadServer
date: Wed, 18 Jan 2023 07:52:23 GMT
expires: Wed, 18 Jan 2023 11:52:23 GMT
cache-control: public, max-age=14400
age: 4560
last-modified: Tue, 01 Nov 2022 11:18:27 GMT
etag: "277671bdc75ca43b2c48464d6ab4278f"
content-type: application/javascript; charset=utf-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash dcc630ff9b5b034f74ab531f98319910
81d27d48814dac0ddd0f1d1546cbb9662cfccb2e
18c99bdfb30a518c5961c84e1510f01bf6e97289f59732c7850eb90ab3887e80
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=103494
Date: Wed, 18 Jan 2023 09:08:23 GMT
Etag: "63c6a754-1d7"
Expires: Thu, 19 Jan 2023 13:53:17 GMT
Last-Modified: Tue, 17 Jan 2023 13:49:08 GMT
Server: ECS (nyb/1D17)
X-Cache: Miss from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Gkuml0qQdDSlfL9Rd0bPhPuQSJiKrrlYCZKOTPOI3rvYthy9hzRDOA==
Age: 249
addshoppers.s3.amazonaws.com/customize/63614f8765caba050d051223/9f634c541ed54c968a15be35435cdbcf.js?_t=1667386554
54.231.160.105200 OK 1.1 kB URL HTTP/1.1 addshoppers.s3.amazonaws.com/customize/63614f8765caba050d051223/9f634c541ed54c968a15be35435cdbcf.js?_t=1667386554
IP 54.231.160.105:0
File type ASCII text, with very long lines (4511), with no line terminators
Hash c16530a7c846699c6b444f58b2834388
0a3c00dff435ca937bdf34c5631a1093515c5970
cb5c0628f7c3e8a6684bbf3c30cf1e49bfc8b9c128e23c25078dae1abdbee891
GET /customize/63614f8765caba050d051223/9f634c541ed54c968a15be35435cdbcf.js?_t=1667386554 HTTP/1.1
Host: addshoppers.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: uir/hDgim61vUH9GttXQqcbtXkeJENSON0/XBt8zQYgvC17/Y38I/JVF8OH5CE9odUkfWvyllIg=
x-amz-request-id: WN6PP6NQX8TK2VQQ
Date: Wed, 18 Jan 2023 09:08:24 GMT
Last-Modified: Wed, 02 Nov 2022 10:55:55 GMT
ETag: "c16530a7c846699c6b444f58b2834388"
Cache-Control: max-age=2592000, public
Content-Encoding: gzip
x-amz-version-id: FpW5rB86FZ_rb4YdIPC7N3jhCCjLrzma
Accept-Ranges: bytes
Content-Type: application/javascript; charset=utf-8
Server: AmazonS3
Content-Length: 1066
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 67dbcafa77fa33a5a56d06c1d14eeac2
e14563247a4330e7e50fa25b864195592957a1ad
77e7a969f9b59c3731f64329822cb08636860cb9ef2b288824059574b9443da5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2745
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:23 GMT
Last-Modified: Wed, 18 Jan 2023 08:22:38 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279
app.shop.pe/app/datapartners/status?usersite_id=63614f8765caba050d051223
35.227.244.1200 OK 49 B URL HTTP/2 app.shop.pe/app/datapartners/status?usersite_id=63614f8765caba050d051223
IP 35.227.244.1:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 0a0c0be9ba606e49965fb3a22d8e27f8
9c8ec82d2adbff86dfb2f233d145e1bf36f872a1
29de7345711c8cdbb629869563540a6907755dcaf708701b9f85aafce9729141
GET /app/datapartners/status?usersite_id=63614f8765caba050d051223 HTTP/1.1
Host: app.shop.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://everytable.com
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 09:08:23 GMT
content-type: application/json; charset=UTF-8
access-control-allow-headers: X-Requested-With, Content-Type, X-XSRFToken
set-cookie: _xsrf=2|a0ab56b3|c6f8efa939c386a355c7306a3d4cac7d|1674032903; Path=/
access-control-allow-origin: *
access-control-allow-credentials: true
etag: W/"d48adb817df76a0be528e77b4fc4b708c8c46f73"
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PATCH
p3p: policyref="/w3c/p3p.xml", CP="CAO PSA OUR"
x-frame-options: deny
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
track.hubspot.com/__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=504767505&v=1.1&a=9337916&pu=https%3A%2F%2Feverytable.com%2FAccount%2FLogin%3FReturnUrl%3D%252FAccount%252FManage%252FSubscriptions%252FSettings%253Fid%253D7f046fc3-66ee-4d37-1371-08dab2daaa26&t=Login+-+Everytable&cts=1674032902638&vi=c526d408f6e219492e672be30c095dcc&nc=true&u=127865298.c526d408f6e219492e672be30c095dcc.1674032902636.1674032902636.1674032902636.1&b=127865298.1.1674032902637&cc=15
104.19.154.83200 OK 45 B URL HTTP/2 track.hubspot.com/__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=504767505&v=1.1&a=9337916&pu=https%3A%2F%2Feverytable.com%2FAccount%2FLogin%3FReturnUrl%3D%252FAccount%252FManage%252FSubscriptions%252FSettings%253Fid%253D7f046fc3-66ee-4d37-1371-08dab2daaa26&t=Login+-+Everytable&cts=1674032902638&vi=c526d408f6e219492e672be30c095dcc&nc=true&u=127865298.c526d408f6e219492e672be30c095dcc.1674032902636.1674032902636.1674032902636.1&b=127865298.1.1674032902637&cc=15
IP 104.19.154.83:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c8817d472077ebfc04593c1fa019d32d
e1e86f41c86c7b9cd2e8b76c6a925a1a3e7e3247
dc111a70984a9eda00752b06277113029ef288f1125c31eff2477413e15e8aa4
GET /__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=504767505&v=1.1&a=9337916&pu=https%3A%2F%2Feverytable.com%2FAccount%2FLogin%3FReturnUrl%3D%252FAccount%252FManage%252FSubscriptions%252FSettings%253Fid%253D7f046fc3-66ee-4d37-1371-08dab2daaa26&t=Login+-+Everytable&cts=1674032902638&vi=c526d408f6e219492e672be30c095dcc&nc=true&u=127865298.c526d408f6e219492e672be30c095dcc.1674032902636.1674032902636.1674032902636.1&b=127865298.1.1674032902637&cc=15 HTTP/1.1
Host: track.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:23 GMT
content-type: image/gif
content-length: 45
cf-ray: 78b62f8f0851b4fd-OSL
cache-control: no-cache, no-store, no-transform
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
p3p: CP="NOI CUR ADM OUR NOR STA NID"
x-hubspot-correlation-id: acac3855-a896-47fc-8671-1fc08bb103a8
x-robots-tag: none
set-cookie: __cf_bm=4vbzBkKsMjFamKH9eOStSZPCMvqm.3JrLD46BDSoxi4-1674032903-0-AbT3TGr1IWk1sDYPINdMqvederFv5FZAxUPBSoHdU40G662ysbcx472IHjvbGO3zKrRRY79yhSoN9FFtaeJWP3s=; path=/; expires=Wed, 18-Jan-23 09:38:23 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TZbp%2FmOvlDx6vKqCti04aC%2F8GM2gBD1MCyXIbY6KpM%2BCw%2FCnugd6EFMe69jeZDX8%2F4LWhm89tm57g7TwjZcaSE8PHOMsf5l%2BUnz0ggIApieInMUHH%2F9Th5n5a20ChpeoCdCi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 67dbcafa77fa33a5a56d06c1d14eeac2
e14563247a4330e7e50fa25b864195592957a1ad
77e7a969f9b59c3731f64329822cb08636860cb9ef2b288824059574b9443da5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2745
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:23 GMT
Last-Modified: Wed, 18 Jan 2023 08:22:38 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash 088f393fc1df601a0b1a75fd410957c9
3a0dcbeff6f03d1884b05fa920a22585c196d40b
2550c91af0136875c19345ec6232defdbf0e18b7452a9f90fe7c3367ebad04b4
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 18 Jan 2023 09:08:23 GMT
Last-Modified: Wed, 18 Jan 2023 08:08:55 GMT
Server: ECS (nyb/1D32)
X-Cache: Miss from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _09byY5c5P88om8HOnfdvfzcA1V7CmMhUp808-us_I5gsEDDsDTc2w==
Age: 3568
nytrng.com/iframe?vcp=4dd5h0np&as_id=eface129fc2b464c9ad5bf81c6a872a5
75.2.91.175200 OK 413 B URL HTTP/2 nytrng.com/iframe?vcp=4dd5h0np&as_id=eface129fc2b464c9ad5bf81c6a872a5
IP 75.2.91.175:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (413), with no line terminators
Hash 36206c1cc5e9d60593018d406d20ea5c
5c9f290e7040504b91779a9d1d50f96764ce1b2e
3b10678c28ebb002a38097cbef369b8eb3c94af83faf0a6362ff30054f6450de
GET /iframe?vcp=4dd5h0np&as_id=eface129fc2b464c9ad5bf81c6a872a5 HTTP/1.1
Host: nytrng.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:23 GMT
content-type: text/html; charset=utf-8
content-length: 413
server: gunicorn
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 4fb946cfad0b0f615de28f0f6cbdf76c
cf4559b7493a71eaeb2d19ee9134cf637c4c27d1
a2f49ab6e775a3e6ee4538a5aca459bf930d7d0e020553a3332eb08b6d0331f9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4460
Cache-Control: max-age=149117
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:23 GMT
Etag: "63c74918-139"
Expires: Fri, 20 Jan 2023 02:33:40 GMT
Last-Modified: Wed, 18 Jan 2023 01:19:20 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 313
cdn.nytrng.com/pl.2.2.min.js
143.204.55.58200 OK 0 B URL HTTP/2 cdn.nytrng.com/pl.2.2.min.js
IP 143.204.55.58:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pl.2.2.min.js HTTP/1.1
Host: cdn.nytrng.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nytrng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: text/plain
content-length: 0
date: Mon, 02 Jan 2023 11:38:59 GMT
last-modified: Wed, 31 Jul 2019 16:57:19 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: n7Qhe9m64H64WS-cFwwCELzD_1wrDk4NdIUjatL23L0JcZSJA_bCYA==
age: 1373365
X-Firefox-Spdy: h2
westus2-2.in.applicationinsights.azure.com//v2/track
40.78.243.19200 OK 0 B URL HTTP/2 westus2-2.in.applicationinsights.azure.com//v2/track
IP 40.78.243.19:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS //v2/track HTTP/1.1
Host: westus2-2.in.applicationinsights.azure.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://everytable.com/
Origin: https://everytable.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-methods: POST
access-control-allow-headers: Origin, X-Requested-With, Content-Name, Content-Type, Accept, Sdk-Context
access-control-allow-origin: *
access-control-max-age: 3600
x-content-type-options: nosniff
date: Wed, 18 Jan 2023 09:08:23 GMT
content-length: 0
X-Firefox-Spdy: h2
everytable.com/_content/orbital7.rapidapp/js/orbital7-extensions.js?v=mY6LBUfFNq71mG4HdF82zenGP4hBWkMhL_PQu4ugIOI&v=mY6LBUfFNq71mG4HdF82zenGP4hBWkMhL_PQu4ugIOI
104.18.207.227200 OK 3.7 kB URL HTTP/2 everytable.com/_content/orbital7.rapidapp/js/orbital7-extensions.js?v=mY6LBUfFNq71mG4HdF82zenGP4hBWkMhL_PQu4ugIOI&v=mY6LBUfFNq71mG4HdF82zenGP4hBWkMhL_PQu4ugIOI
IP 104.18.207.227:0
Hash ac5346348ab7474e5362fb369413b5dd
d9f12304fcd6ac91881bc5738746ed6a9e5fe3e9
d16da02a80e62ecfe3f8fe9951e873ca361f02a6e920d21167b4f16d3c349294
GET /_content/orbital7.rapidapp/js/orbital7-extensions.js?v=mY6LBUfFNq71mG4HdF82zenGP4hBWkMhL_PQu4ugIOI&v=mY6LBUfFNq71mG4HdF82zenGP4hBWkMhL_PQu4ugIOI HTTP/1.1
Host: everytable.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/Account/Login?ReturnUrl=%2FAccount%2FManage%2FSubscriptions%2FSettings%3Fid%3D7f046fc3-66ee-4d37-1371-08dab2daaa26
Cookie: __cf_bm=HenybGeyttPZphMU2JjWkPfO.b35eEmM4Peifv.aUSI-1674032896-0-ASfyioJzj2JxFhmtXhxwZgSRy/taUeroY9mupOCQmHfKynF4bheZY75sUNf2/U/D7fAYzF7JEZLY8DbzdeHm0AU=; .AspNetCore.Antiforgery.9fXoN5jHCXs=CfDJ8PeGRygCdzVOucg1irvo8_MIMREruhNoRZ0UpMcKOj71Og_DIZJhbD3otUevNVGCevSfCnvE35sPHDIDVbuswl3xLtOzHcY8H76UWF_f6ZCjAQVvKeUXuAtU7woOiHGHFX9uZxLKaOQEijG0atNHtiY
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:17 GMT
content-type: application/javascript
content-encoding: gzip
etag: "1d92187f8a4f6c9"
last-modified: Fri, 06 Jan 2023 04:33:06 GMT
vary: Accept-Encoding
request-context: appId=cid-v1:c62b87f9-ce69-438e-a223-f3f1437300d0
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
cf-cache-status: HIT
expires: Wed, 18 Jan 2023 13:08:17 GMT
cache-control: public, max-age=14400
server: cloudflare
cf-ray: 78b62f68ab75b51b-OSL
X-Firefox-Spdy: h2
westus2-2.in.applicationinsights.azure.com//v2/track
40.78.243.19200 OK 51 B URL HTTP/2 westus2-2.in.applicationinsights.azure.com//v2/track
IP 40.78.243.19:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JSON data\012- , ASCII text, with no line terminators
Hash 41f54862f906ea2c14a9cd7847bfabff
523604eaab95010e3c6c29bb18751eeb6447deac
1c300fc217f6dcd4dde779b410f9c36ea1960f27eb203f0475b6451e20ce760a
POST //v2/track HTTP/1.1
Host: westus2-2.in.applicationinsights.azure.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Content-Length: 11071
Origin: https://everytable.com
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
x-ms-session-id: 7CE3F59A-796D-49FE-9452-88D6FE67ACCF
strict-transport-security: max-age=31536000
access-control-allow-headers: Origin, X-Requested-With, Content-Name, Content-Type, Accept, Cache-Control, Sdk-Context
access-control-allow-origin: *
access-control-max-age: 3600
x-content-type-options: nosniff
date: Wed, 18 Jan 2023 09:08:23 GMT
content-length: 51
X-Firefox-Spdy: h2
matching.ivitrack.com/sync?realm=criteo&uid=k-ipZ_alahzutjV7SvLxasT3VDwdTGAY4kkeGjrg
34.117.157.22200 OK 42 B URL HTTP/2 matching.ivitrack.com/sync?realm=criteo&uid=k-ipZ_alahzutjV7SvLxasT3VDwdTGAY4kkeGjrg
IP 34.117.157.22:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /sync?realm=criteo&uid=k-ipZ_alahzutjV7SvLxasT3VDwdTGAY4kkeGjrg HTTP/1.1
Host: matching.ivitrack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: istio-envoy
date: Wed, 18 Jan 2023 09:08:23 GMT
content-type: image/gif
content-length: 42
cache-control: public, max-age=86400
x-envoy-upstream-service-time: 0
x-envoy-decorator-operation: tag-manager.programmatic.svc.cluster.local:3000/*
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash b5e62650519dd89cec0c0950b563c96d
95062135838a0d93ea573bd8f08171b856fdabd0
507f88315fee614f0890cbcbc15479d895de46d3ac115acee3861a7346b1b6a2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "507F88315FEE614F0890CBCBC15479D895DE46D3AC115ACEE3861A7346B1B6A2"
Last-Modified: Mon, 16 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13176
Expires: Wed, 18 Jan 2023 12:48:00 GMT
Date: Wed, 18 Jan 2023 09:08:24 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash 803357cbe4519fb86480e2350c5a339c
6fe4ef93b7c41826a71135ea926c1575b238f2a7
6d3bfc5dddd44edb5bbf29286ded57414fd7a0fbddeb27063e911f15d208c938
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=162438
Date: Wed, 18 Jan 2023 09:08:24 GMT
Etag: "63c78122-1d7"
Expires: Fri, 20 Jan 2023 06:15:42 GMT
Last-Modified: Wed, 18 Jan 2023 05:18:26 GMT
Server: ECS (nyb/1D1F)
X-Cache: Miss from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: uE1zzuVGtQAekHIf6BStZ9PCLThfA38Q3HrUiKEdMcjUsEiH_VAJRw==
Age: 3437
gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
178.250.0.157302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 18 Jan 2023 09:08:24 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://dpm.demdex.net/ibs:dpid=28645&dpuuid=
server-processing-duration-in-ticks: 855791
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k--LR5MFahzutjV7SvLxasT3VDwdQeFp7tJkZoSQ
104.18.33.19302 Found 0 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k--LR5MFahzutjV7SvLxasT3VDwdQeFp7tJkZoSQ
IP 104.18.33.19:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rum?cm_dsp_id=20&external_user_id=k--LR5MFahzutjV7SvLxasT3VDwdQeFp7tJkZoSQ HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 18 Jan 2023 09:08:24 GMT
content-length: 0
location: /rum?cm_dsp_id=20&external_user_id=k--LR5MFahzutjV7SvLxasT3VDwdQeFp7tJkZoSQ&C=1
cf-ray: 78b62f94ef1bb506-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=Y8e3CNdLn2PDo4.pLJiy5AAA; Path=/; Domain=casalemedia.com; Expires=Thu, 18 Jan 2024 09:08:24 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=1838; Path=/; Domain=casalemedia.com; Expires=Tue, 18 Apr 2023 09:08:24 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=1838; Path=/; Domain=casalemedia.com; Expires=Tue, 18 Apr 2023 09:08:24 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C86%2FGcNsciMy7VVpKc9zAR1WSZx4sI71VnfeAdfpp8ff86VpcUS2%2BvQWtsKLU6B3OnIFgGQ%2FmaQA%2BZmYKcZEZz0E4weCjDJCDK5aVuW%2BQuLtZV2T1WMYQmLeDbNn%2B%2BSy4KQ5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k--ogmSlahzutjV7SvLxasT3VDwdSq9rHWHa2bbg
23.38.200.22200 OK 185 B URL HTTP/2 contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k--ogmSlahzutjV7SvLxasT3VDwdSq9rHWHa2bbg
IP 23.38.200.22:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash 2928dbfed4988ff900a5b71bc377b1dd
c0121c4706f66d9da0b6f8641555aa517e8c11c7
91dd324553ada6ebadf22405bbf3dff8c04ea24f5eb880b7a6f83110a1727a68
GET /cksync.php?cs=3&type=crt&ovsid=k--ogmSlahzutjV7SvLxasT3VDwdSq9rHWHa2bbg HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-length: 185
content-type: image/gif
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA"
strict-transport-security: max-age=31536000
x-mnet-hl2: E
expires: Wed, 18 Jan 2023 09:08:24 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 18 Jan 2023 09:08:24 GMT
X-Firefox-Spdy: h2
ad.yieldlab.net/m?dt_id=8664&ext_id=k-CazsbFahzutjV7SvLxasT3VDwdR3G1zXEYLgqQ
23.13.245.180204 No Content 0 B URL HTTP/1.1 ad.yieldlab.net/m?dt_id=8664&ext_id=k-CazsbFahzutjV7SvLxasT3VDwdR3G1zXEYLgqQ
IP 23.13.245.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m?dt_id=8664&ext_id=k-CazsbFahzutjV7SvLxasT3VDwdR3G1zXEYLgqQ HTTP/1.1
Host: ad.yieldlab.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
x-application-context: application
Cache-Control: no-store,no-cache,max-age=-3600,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Tue, 17 Jan 2023 09:08:24 GMT
Date: Wed, 18 Jan 2023 09:08:24 GMT
Connection: keep-alive
Set-Cookie: id=10dd146e-54ee-47b3-bdc3-7ea58c5c027d; Path=/; Domain=prod.svc.y6b.de; Expires=Thu, 18-Jan-2024 09:08:24 GMT; Max-Age=31536000; Secure; SameSite=None
criteo-sync.teads.tv/um?eid=80&uid=k-a6SwWlahzutjV7SvLxasT3VDwdTHBvELKpLzCQ
23.195.255.234200 OK 23 B URL HTTP/2 criteo-sync.teads.tv/um?eid=80&uid=k-a6SwWlahzutjV7SvLxasT3VDwdTHBvELKpLzCQ
IP 23.195.255.234:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash da5b449fff36752a93779fa4067cd2eb
71a96eea77f21ab5f1819b96c4cedd5cd34476ca
328e90a318268aea96180cc31666ae6d6f79d90d078c123bc3d98ee08a192fb7
GET /um?eid=80&uid=k-a6SwWlahzutjV7SvLxasT3VDwdTHBvELKpLzCQ HTTP/1.1
Host: criteo-sync.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
server: akka-http/10.2.9
content-length: 23
expires: Wed, 18 Jan 2023 09:08:24 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 18 Jan 2023 09:08:24 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a0f19d1a664ef8542293bc85e78a0c56
01eeb1b3648a6a86ea05574113533d80cf95ec65
8721c4080bd091a7d2fcd5ec6cd166b26c41efa83c5791ee2cd5d540ca285af9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4248
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:24 GMT
Last-Modified: Wed, 18 Jan 2023 07:57:36 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5b260ae920b0b400fbb37eec1d438563
129ba1800acd56c3b48c01a69227669563f10925
ef1862da52c8a13cae46dba868d0a9cec8458b22f9aec9176db46fce43a43f05
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4151
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:24 GMT
Last-Modified: Wed, 18 Jan 2023 07:59:13 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash c9d33359f8adede9f0d60eabc6518848
ef33a045714eee400d18d4e53a1c09d35da2aad8
6083d2b7313321be344a0e4905a3722a04f31ba5db5b9466423c01e0c99b296d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 09:08:24 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 18 Jan 2023 03:11:54 GMT
Expires: Wed, 25 Jan 2023 03:11:53 GMT
Etag: "ef33a045714eee400d18d4e53a1c09d35da2aad8"
Cache-Control: max-age=582808,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78b62f957831b4f9-OSL
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k--LR5MFahzutjV7SvLxasT3VDwdQeFp7tJkZoSQ&C=1
104.18.33.19200 OK 43 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k--LR5MFahzutjV7SvLxasT3VDwdQeFp7tJkZoSQ&C=1
IP 104.18.33.19:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /rum?cm_dsp_id=20&external_user_id=k--LR5MFahzutjV7SvLxasT3VDwdQeFp7tJkZoSQ&C=1 HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:24 GMT
content-type: image/gif
content-length: 43
cf-ray: 78b62f957fe8b506-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vL1c8SuEwbic7b%2Bc7B7ZyzTyaD9WTTiRQNik9TejO6C5ngNRhgpb5S6K125nOcukZcwe1YmL9hKRu9dhQecDftvmyMLWY4JlGLBYtenCnuQ6Z3DxFPibnmrgKiKQ%2B7A%2BSEH0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-gezFxlahzutjV7SvLxasT3VDwdRUYYgjjVbDJw&google_cm&google_hm=ay1nZXpGeGxhaHp1dGpWN1N2THhhc1QzVkR3ZFJVWVlnampWYkRKdw
216.58.207.194302 Found 440 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-gezFxlahzutjV7SvLxasT3VDwdRUYYgjjVbDJw&google_cm&google_hm=ay1nZXpGeGxhaHp1dGpWN1N2THhhc1QzVkR3ZFJVWVlnampWYkRKdw
IP 216.58.207.194:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 0d0d173bf0c692cbcf5802baf1081b76
d98e5018b51ba248a1b4c08873215855adfd817b
886553e33d508baa8326003f76e57e1179749c6a5dfa38a00233192bab7cb2ca
GET /pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-gezFxlahzutjV7SvLxasT3VDwdRUYYgjjVbDJw&google_cm&google_hm=ay1nZXpGeGxhaHp1dGpWN1N2THhhc1QzVkR3ZFJVWVlnampWYkRKdw HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-gezFxlahzutjV7SvLxasT3VDwdRUYYgjjVbDJw&google_cm=&google_hm=ay1nZXpGeGxhaHp1dGpWN1N2THhhc1QzVkR3ZFJVWVlnampWYkRKdw&google_tc=
date: Wed, 18 Jan 2023 09:08:24 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 440
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 18-Jan-2023 09:23:24 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cm.adform.net/pixel?adform_pid=15&adform_pc=k-jcyvWFahzutjV7SvLxasT3VDwdTMDEFB1za-Zg
37.157.5.142200 OK 43 B URL HTTP/2 cm.adform.net/pixel?adform_pid=15&adform_pc=k-jcyvWFahzutjV7SvLxasT3VDwdTMDEFB1za-Zg
IP 37.157.5.142:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /pixel?adform_pid=15&adform_pc=k-jcyvWFahzutjV7SvLxasT3VDwdTMDEFB1za-Zg HTTP/1.1
Host: cm.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 09:08:24 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 04 Oct 2021 14:04:49 GMT
etag: "615b0a01-2b"
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash de9b5748b924db99305310af9ff963d9
96381b4ec953df4445bcfae3f37ef2ea6605696e
324aef11b73f1813ebcfdf005f2c573259d85fe7048dbc103c898c27168cf2a5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3728
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:24 GMT
Last-Modified: Wed, 18 Jan 2023 08:06:16 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 314
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-4XVM9FahzutjV7SvLxasT3VDwdTOxD3DrXQ-Lg
3.126.56.137302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-4XVM9FahzutjV7SvLxasT3VDwdTOxD3DrXQ-Lg
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-4XVM9FahzutjV7SvLxasT3VDwdTOxD3DrXQ-Lg HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 18 Jan 2023 09:08:24 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-4XVM9FahzutjV7SvLxasT3VDwdTOxD3DrXQ-Lg&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBAi3x2MCEMVzB0ZrfPcPoY46Hv45gVQFEgEBAQEIyWPRYwAAAAAA_eMAAA&S=AQAAAs2bmweJvROGQWF1IJdZ62w; Expires=Thu, 18 Jan 2024 15:08:24 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 7d90a0017868f6b60b04c21c4665455d
08028479b1688b82aece625906e88b4a492cd49c
e29d7d417d472eac03bc0b4f7ca4c235f02e3c18192e78635e238a99af8729b9
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 18 Jan 2023 09:08:24 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 17 Jan 2023 20:59:33 GMT
Expires: Wed, 18 Jan 2023 20:59:33 GMT
ETag: "08028479b1688b82aece625906e88b4a492cd49c"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash bc03d059d02da11121a3d2a727ff5a3c
ed478ff3ca011d30241bf4a82f78c6dae9c1ba67
f9b9eddaa2143aeadec9cf1804cffdf80275eb11e44ec643682b843bd731182c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=106867
Date: Wed, 18 Jan 2023 09:08:24 GMT
Etag: "63c69c0a-1d7"
Expires: Thu, 19 Jan 2023 14:49:31 GMT
Last-Modified: Tue, 17 Jan 2023 13:00:58 GMT
Server: ECS (nyb/1D11)
X-Cache: Miss from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: NddP-OFKkRaPc9bhjiaSoOyIpox3zmDKt8-dFZq1PqDTy62Wr_z27w==
Age: 6513
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 010bf88d77d801d3288a04f44f056648
fc9e7edde6dd9c0d430cb9d7647427dae871cb21
17aa4487f9bb4de5cfe1cf722d1a474b4f4a08e5d25abbf8c1b440fecd87abb9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4707
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:24 GMT
Last-Modified: Wed, 18 Jan 2023 07:49:57 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-gezFxlahzutjV7SvLxasT3VDwdRUYYgjjVbDJw&google_cm=&google_hm=ay1nZXpGeGxhaHp1dGpWN1N2THhhc1QzVkR3ZFJVWVlnampWYkRKdw&google_tc=
216.58.207.194302 Found 332 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-gezFxlahzutjV7SvLxasT3VDwdRUYYgjjVbDJw&google_cm=&google_hm=ay1nZXpGeGxhaHp1dGpWN1N2THhhc1QzVkR3ZFJVWVlnampWYkRKdw&google_tc=
IP 216.58.207.194:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 3c06b44ee7e8ffe0fb32e8cfa7ba8efa
8db83c4623d1f248e69b3537ad391eee4ac4d8b4
8182af79cf4720f2149f8db11ba8639c33ad8b95d8a3e6153beb4368b28d0a14
GET /pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-gezFxlahzutjV7SvLxasT3VDwdRUYYgjjVbDJw&google_cm=&google_hm=ay1nZXpGeGxhaHp1dGpWN1N2THhhc1QzVkR3ZFJVWVlnampWYkRKdw&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-gezFxlahzutjV7SvLxasT3VDwdRUYYgjjVbDJw&google_error=3
date: Wed, 18 Jan 2023 09:08:24 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 332
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
eb2.3lift.com/xuid?mid=2711&xuid=k-GLtgTVahzutjV7SvLxasT3VDwdS7vHDUDQvMzw&dongle=013b
13.248.245.213200 OK 37 B URL HTTP/2 eb2.3lift.com/xuid?mid=2711&xuid=k-GLtgTVahzutjV7SvLxasT3VDwdS7vHDUDQvMzw&dongle=013b
IP 13.248.245.213:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /xuid?mid=2711&xuid=k-GLtgTVahzutjV7SvLxasT3VDwdS7vHDUDQvMzw&dongle=013b HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:24 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 293f45d73b83d93c7fa3c36e1202ba1b
d98618928612ebb9bc26240637c3593c91481f66
483fb179fa74faee694975da4f4251711403c6f9b53fac3672f13798023222c0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4050
Cache-Control: max-age=92139
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:24 GMT
Etag: "63c66c21-1d7"
Expires: Thu, 19 Jan 2023 10:44:03 GMT
Last-Modified: Tue, 17 Jan 2023 09:36:33 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-4XVM9FahzutjV7SvLxasT3VDwdTOxD3DrXQ-Lg&verify=true
3.126.56.137204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-4XVM9FahzutjV7SvLxasT3VDwdTOxD3DrXQ-Lg&verify=true
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-4XVM9FahzutjV7SvLxasT3VDwdTOxD3DrXQ-Lg&verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 18 Jan 2023 09:08:24 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBAi3x2MCEFqZqdLCqciyTUhQbPc0W3MFEgEBAQEIyWPRYwAAAAAA_eMAAA&S=AQAAAsg7X0kR1fLsH1j_bGxFeig; Expires=Thu, 18 Jan 2024 15:08:24 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-pL2gt1ahzutjV7SvLxasT3VDwdTK66Cjj4ZXCg
185.86.137.110200 OK 43 B URL HTTP/1.1 rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-pL2gt1ahzutjV7SvLxasT3VDwdTK66Cjj4ZXCg
IP 185.86.137.110:0
ASN #201081 SmartAdServer SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /redir/?partnerid=79&partneruserid=k-pL2gt1ahzutjV7SvLxasT3VDwdTK66Cjj4ZXCg HTTP/1.1
Host: rtb-csync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: image/gif
date: Wed, 18 Jan 2023 09:08:24 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: pid=4355624432337077319; expires=Sun, 18 Feb 2024 09:08:24 GMT; domain=smartadserver.com; path=/
TestIfCookieP=ok; expires=Sun, 18 Feb 2024 09:08:24 GMT; domain=smartadserver.com; path=/
csync=79:k-pL2gt1ahzutjV7SvLxasT3VDwdTK66Cjj4ZXCg; expires=Thu, 18 Jan 2024 09:08:24 GMT; domain=smartadserver.com; path=/
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-x5z2YFahzutjV7SvLxasT3VDwdQZxnsQc_pX2Q&expires=30
69.173.144.138204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-x5z2YFahzutjV7SvLxasT3VDwdQZxnsQc_pX2Q&expires=30
IP 69.173.144.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=6434&nid=2149&put=k-x5z2YFahzutjV7SvLxasT3VDwdQZxnsQc_pX2Q&expires=30 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 3bafef7aa4e37890defcd73f0a080481
Content-Type: image/gif
e1.emxdgt.com/put?d=d53&uid=k-8FoktVahzutjV7SvLxasT3VDwdQLrbioxH-CNPodEfO6VwXy
3.75.3.113204 No Content 0 B URL HTTP/2 e1.emxdgt.com/put?d=d53&uid=k-8FoktVahzutjV7SvLxasT3VDwdQLrbioxH-CNPodEfO6VwXy
IP 3.75.3.113:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /put?d=d53&uid=k-8FoktVahzutjV7SvLxasT3VDwdQLrbioxH-CNPodEfO6VwXy HTTP/1.1
Host: e1.emxdgt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
content-type: text/html
date: Wed, 18 Jan 2023 09:08:24 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 8796e6a2b9ae3b266a776ede62580e69
c5740324bb0c3faee35f93e1a81bcf7dd4271a89
1dfee7ac16c08adcd6320bd503d9031d6b85b74d73cd81c19b299dfbba82037b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 09:08:24 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 17 Jan 2023 13:56:51 GMT
Expires: Tue, 24 Jan 2023 13:56:50 GMT
Etag: "c5740324bb0c3faee35f93e1a81bcf7dd4271a89"
Cache-Control: max-age=535105,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78b62f961911b4f9-OSL
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash 4722d4b04917fb3b49164ea954e4a89d
fd939e84939e863d7a892d443805a4bda5e54853
adf54d09c8144664b08523807cdb043a058761be02accbdd65ec19a596756458
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=164467
Date: Wed, 18 Jan 2023 09:08:24 GMT
Etag: "63c77cfc-1d7"
Expires: Fri, 20 Jan 2023 06:49:31 GMT
Last-Modified: Wed, 18 Jan 2023 05:00:44 GMT
Server: ECS (bsa/EB23)
X-Cache: Miss from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: R4tjhQzrvzXXqc4LrXTWCmA2I-cRSMAZ6E9xjh-xFaQQeoFMI7tWdA==
Age: 6527
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash 92e45e0fb4b9a1d6e1e879d93dd20c60
f4b992e2329dbf0656fa19596d3b87fe1ad03018
55b231bc5aba92c90c22ea735581ddcba3e6ed1ae13349f4ef251c3494c22231
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 18 Jan 2023 09:08:24 GMT
Last-Modified: Wed, 18 Jan 2023 08:13:01 GMT
Server: ECS (nyb/1D19)
X-Cache: Miss from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: SKvUts0wkl03pty4HHla426dLEEj6457VUXPRedS_ZBbQBjG9XfM0Q==
Age: 3323
simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-vdh-ZlahzutjV7SvLxasT3VDwdQI2H-8-bvW5g
185.64.190.80200 OK 42 B URL HTTP/2 simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-vdh-ZlahzutjV7SvLxasT3VDwdQI2H-8-bvW5g
IP 185.64.190.80:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-vdh-ZlahzutjV7SvLxasT3VDwdQI2H-8-bvW5g HTTP/1.1
Host: simage2.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 09:08:24 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_97=3385-uid:k-vdh-ZlahzutjV7SvLxasT3VDwdQI2H-8-bvW5g&KRTB&23144-uid:k-vdh-ZlahzutjV7SvLxasT3VDwdQI2H-8-bvW5g&KRTB&23286-uid:k-vdh-ZlahzutjV7SvLxasT3VDwdQI2H-8-bvW5g&KRTB&23287-uid:k-vdh-ZlahzutjV7SvLxasT3VDwdQI2H-8-bvW5g; domain=pubmatic.com; secure; expires=Fri, 17-Feb-2023 09:08:24 GMT; path=/
PugT=1674032904; domain=pubmatic.com; secure; expires=Fri, 17-Feb-2023 09:08:24 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 46a56cce68bfd977f6e7bfc4f3835b33
d468ba73156815a49283c91895f99c644ef1bbeb
2719eaa8df02b2bcaa8fcbb02a779357c33b986fa70f786517cca8bf330672aa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1005
Cache-Control: max-age=162913
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:08:24 GMT
Etag: "63c78c7c-1d7"
Expires: Fri, 20 Jan 2023 06:23:37 GMT
Last-Modified: Wed, 18 Jan 2023 06:06:52 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash 9cefe2174f16a9b0b45ff92b7f33460d
df3c3488d94c5310d6691dd62be1fdc3e320f613
aab2799a8fd2e028ce4ca9a26491e8f7f59275889ab581ec90571e74ae9bd7c1
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=99574
Date: Wed, 18 Jan 2023 09:08:24 GMT
Etag: "63c68e08-1d7"
Expires: Thu, 19 Jan 2023 12:47:58 GMT
Last-Modified: Tue, 17 Jan 2023 12:01:12 GMT
Server: ECS (nyb/1D28)
X-Cache: Miss from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: xjBniGe0Cgp6gxHCb3jnbu4xRtdWDcGopJumjbentGumLnp6dw949Q==
Age: 2806
x.bidswitch.net/sync?dsp_id=46&user_id=k-pYZAdlahzutjV7SvLxasT3VDwdQtD1LGPgGS0A&expires=30
52.58.62.168302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=46&user_id=k-pYZAdlahzutjV7SvLxasT3VDwdQtD1LGPgGS0A&expires=30
IP 52.58.62.168:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=46&user_id=k-pYZAdlahzutjV7SvLxasT3VDwdQtD1LGPgGS0A&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 18 Jan 2023 09:08:24 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-pYZAdlahzutjV7SvLxasT3VDwdQtD1LGPgGS0A&expires=30
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=908b0435-de89-43fd-8db3-1ae77d1622f8; path=/; expires=Thu, 18-Jan-2024 09:08:24 GMT; domain=.bidswitch.net; samesite=none; secure
c=1674032904; path=/; expires=Thu, 18-Jan-2024 09:08:24 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1674032904; path=/; expires=Thu, 18-Jan-2024 09:08:24 GMT; domain=.bidswitch.net; samesite=none; secure
c=1674032904; path=/; expires=Thu, 18-Jan-2024 09:08:24 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-KzZ9UFahzutjV7SvLxasT3VDwdSZ6MKGqWVBoQ
3.69.18.107302 Found 0 B URL HTTP/2 ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-KzZ9UFahzutjV7SvLxasT3VDwdSZ6MKGqWVBoQ
IP 3.69.18.107:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?publisher_dsp_id=38&external_user_id=k-KzZ9UFahzutjV7SvLxasT3VDwdSZ6MKGqWVBoQ HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 18 Jan 2023 09:08:24 GMT
content-type: text/plain
content-length: 0
location: https://ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-KzZ9UFahzutjV7SvLxasT3VDwdSZ6MKGqWVBoQ
set-cookie: tuuid=42d03935-cdb4-4f5a-95ed-1c8e4897ec41; Expires=Tue, 18 Apr 2023 09:08:24 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1674032904; Expires=Tue, 18 Apr 2023 09:08:24 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-5QiST1ahzutjV7SvLxasT3VDwdQJedQI14bYzA
52.57.206.183204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-5QiST1ahzutjV7SvLxasT3VDwdQJedQI14bYzA
IP 52.57.206.183:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-5QiST1ahzutjV7SvLxasT3VDwdQJedQI14bYzA HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Wed, 18 Jan 2023 09:08:24 GMT
X-Firefox-Spdy: h2
everytable.com/css-v2/fonts/Font-Poppins.min.css?v=5fZhq9DbdU_Y94eO_R64WErt2hiAowqCq2xME_RxfUc&v=5fZhq9DbdU_Y94eO_R64WErt2hiAowqCq2xME_RxfUc
104.18.207.227200 OK 0 B URL HTTP/2 everytable.com/css-v2/fonts/Font-Poppins.min.css?v=5fZhq9DbdU_Y94eO_R64WErt2hiAowqCq2xME_RxfUc&v=5fZhq9DbdU_Y94eO_R64WErt2hiAowqCq2xME_RxfUc
IP 104.18.207.227:0
GET /css-v2/fonts/Font-Poppins.min.css?v=5fZhq9DbdU_Y94eO_R64WErt2hiAowqCq2xME_RxfUc&v=5fZhq9DbdU_Y94eO_R64WErt2hiAowqCq2xME_RxfUc HTTP/1.1
Host: everytable.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/Account/Login?ReturnUrl=%2FAccount%2FManage%2FSubscriptions%2FSettings%3Fid%3D7f046fc3-66ee-4d37-1371-08dab2daaa26
Cookie: __cf_bm=HenybGeyttPZphMU2JjWkPfO.b35eEmM4Peifv.aUSI-1674032896-0-ASfyioJzj2JxFhmtXhxwZgSRy/taUeroY9mupOCQmHfKynF4bheZY75sUNf2/U/D7fAYzF7JEZLY8DbzdeHm0AU=; .AspNetCore.Antiforgery.9fXoN5jHCXs=CfDJ8PeGRygCdzVOucg1irvo8_MIMREruhNoRZ0UpMcKOj71Og_DIZJhbD3otUevNVGCevSfCnvE35sPHDIDVbuswl3xLtOzHcY8H76UWF_f6ZCjAQVvKeUXuAtU7woOiHGHFX9uZxLKaOQEijG0atNHtiY
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:17 GMT
content-type: text/css
content-encoding: gzip
etag: "1d92189466e20df"
last-modified: Fri, 06 Jan 2023 04:42:26 GMT
vary: Accept-Encoding
request-context: appId=cid-v1:c62b87f9-ce69-438e-a223-f3f1437300d0
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
cf-cache-status: HIT
expires: Wed, 18 Jan 2023 13:08:17 GMT
cache-control: public, max-age=14400
server: cloudflare
cf-ray: 78b62f68bb8eb51b-OSL
X-Firefox-Spdy: h2
dynamic.criteo.com/js/ld/ld.js?a=80903
178.250.0.147200 OK 0 B URL HTTP/2 dynamic.criteo.com/js/ld/ld.js?a=80903
IP 178.250.0.147:0
GET /js/ld/ld.js?a=80903 HTTP/1.1
Host: dynamic.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:18 GMT
content-type: application/javascript; charset=utf-8
server: Kestrel
cache-control: public,max-age=10800
content-encoding: br
vary: Origin, Accept-Encoding
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
www.lightboxcdn.com/vendor/79465570-44d0-4d8c-a4df-c702acc9ff75/lightbox.js?mb=1674032897884&lv=1
104.19.211.131200 OK 0 B URL HTTP/2 www.lightboxcdn.com/vendor/79465570-44d0-4d8c-a4df-c702acc9ff75/lightbox.js?mb=1674032897884&lv=1
IP 104.19.211.131:0
GET /vendor/79465570-44d0-4d8c-a4df-c702acc9ff75/lightbox.js?mb=1674032897884&lv=1 HTTP/1.1
Host: www.lightboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:18 GMT
content-type: application/javascript
vary: Accept-Encoding
x-powered-by: ASP.NET
last-modified: Tue, 17 Jan 2023 21:47:08 GMT
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 78b62f6c782fb4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?topUrl=everytable.com&origin=onetag
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/syncframe?topUrl=everytable.com&origin=onetag
IP 178.250.0.157:0
GET /syncframe?topUrl=everytable.com&origin=onetag HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:18 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
uid=6b156a59-e2b0-4196-9cdb-9d6cbd39f186; expires=Mon, 12 Feb 2024 09:08:18 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 866471
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
static.zdassets.com/ekr/snippet.js?key=5a3dc8c9-e974-4813-ac3d-5df39c57947a
104.18.72.113200 OK 0 B URL HTTP/2 static.zdassets.com/ekr/snippet.js?key=5a3dc8c9-e974-4813-ac3d-5df39c57947a
IP 104.18.72.113:0
GET /ekr/snippet.js?key=5a3dc8c9-e974-4813-ac3d-5df39c57947a HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:17 GMT
content-type: application/javascript
x-amz-id-2: 2vczt6VEQAujZh2Sn1saK7Q0yPHQMRKRQuuC+kOwLnJ40itjD1HXfy2Id85tVz8wD4O1ArN10VQ=
x-amz-request-id: 4MARQ9YY8PDZ70A8
x-amz-replication-status: PENDING
last-modified: Thu, 28 Jul 2022 23:44:02 GMT
etag: W/"5cae6ce528dce0c327b2bcbaad459fdb"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600, s-maxage=60
x-amz-version-id: TCAqq4sghBBBAAXd3MLZ8Fy8XIds..vO
cf-cache-status: HIT
age: 10
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hrG6tHhbHu9sRZqSFgLxIpt9whZ3W%2Far8%2F4dKVR6x3PvZSMWqdahOwpXWJxqu3zgndFCgW2PgPO1F93l93nSvUgptbhRM65XSb5uolG7ekTNzgki%2FTZeMjOCevrBJOnHQ8c5ZHI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 78b62f68f8771c16-OSL
content-encoding: br
X-Firefox-Spdy: h2
js.hsadspixel.net/fb.js
104.17.116.176200 OK 0 B IP 104.17.116.176:0
GET /fb.js HTTP/1.1
Host: js.hsadspixel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:17 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Tue, 03 Jan 2023 01:54:30 UTC
etag: W/"83a5a8783c71c1074cc34ecd8c8615de"
x-amz-server-side-encryption: AES256
x-amz-version-id: Pzk5Y6yW4FTLubLBTP3MgGAHjRxytAJ0
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 dfc1931cc62ecd4133c2b9bdae1bb476.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: ybyUcZUzd6kPOuUOZLLRSKr2x6juyIB0Kfo00w15BapCXajMg3e_yg==
cache-control: max-age=600
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=adsscriptloaderstatic/static-1.304/bundles/pixels-release.js&cfRay=783c48e89f3609b1-IAD
x-hs-target-asset: adsscriptloaderstatic/static-1.304/bundles/pixels-release.js
x-hs-cache-status: HIT
cache-tag: staticjsapp-AdsScriptLoaderCloudflare-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 263
server: cloudflare
cf-ray: 78b62f6c4d60b505-OSL
content-encoding: br
X-Firefox-Spdy: h2
everytable.com/js-v2/site.js?v=3QwOZ-3nx1dwc6G3bnRs7GSWS5o
104.18.207.227200 OK 0 B URL HTTP/2 everytable.com/js-v2/site.js?v=3QwOZ-3nx1dwc6G3bnRs7GSWS5o
IP 104.18.207.227:0
GET /js-v2/site.js?v=3QwOZ-3nx1dwc6G3bnRs7GSWS5o HTTP/1.1
Host: everytable.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/Account/Login?ReturnUrl=%2FAccount%2FManage%2FSubscriptions%2FSettings%3Fid%3D7f046fc3-66ee-4d37-1371-08dab2daaa26
Cookie: __cf_bm=HenybGeyttPZphMU2JjWkPfO.b35eEmM4Peifv.aUSI-1674032896-0-ASfyioJzj2JxFhmtXhxwZgSRy/taUeroY9mupOCQmHfKynF4bheZY75sUNf2/U/D7fAYzF7JEZLY8DbzdeHm0AU=; .AspNetCore.Antiforgery.9fXoN5jHCXs=CfDJ8PeGRygCdzVOucg1irvo8_MIMREruhNoRZ0UpMcKOj71Og_DIZJhbD3otUevNVGCevSfCnvE35sPHDIDVbuswl3xLtOzHcY8H76UWF_f6ZCjAQVvKeUXuAtU7woOiHGHFX9uZxLKaOQEijG0atNHtiY
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:17 GMT
content-type: text/javascript; charset=UTF-8
cache-control: public, max-age=31536000
content-encoding: gzip
etag: "3QwOZ-3nx1dwc6G3bnRs7GSWS5o"
last-modified: Wed, 04 Jan 2023 04:41:44 GMT
vary: Accept-Encoding
request-context: appId=cid-v1:c62b87f9-ce69-438e-a223-f3f1437300d0
strict-transport-security: max-age=2592000
x-content-type-options: nosniff
x-powered-by: ASP.NET
cf-cache-status: HIT
expires: Thu, 18 Jan 2024 09:08:17 GMT
server: cloudflare
cf-ray: 78b62f68ab7ab51b-OSL
X-Firefox-Spdy: h2
www.lightboxcdn.com/vendor/79465570-44d0-4d8c-a4df-c702acc9ff75/user.js?cb=637828892545775197
104.19.211.131200 OK 0 B URL HTTP/2 www.lightboxcdn.com/vendor/79465570-44d0-4d8c-a4df-c702acc9ff75/user.js?cb=637828892545775197
IP 104.19.211.131:0
GET /vendor/79465570-44d0-4d8c-a4df-c702acc9ff75/user.js?cb=637828892545775197 HTTP/1.1
Host: www.lightboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:18 GMT
content-type: application/javascript
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=1106487
content-md5: dsQPu5/EmmXy/j68HFQLhw==
last-modified: Mon, 14 Mar 2022 21:14:14 GMT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 988eb331-d01e-0022-77b0-297606000000
x-ms-version: 2009-09-19
cf-cache-status: HIT
age: 40870
expires: Thu, 18 Jan 2024 09:08:18 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 78b62f6ffd70b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
everytable.com/images/empty-cart-illustration.svg
104.18.207.227200 OK 0 B URL HTTP/2 everytable.com/images/empty-cart-illustration.svg
IP 104.18.207.227:0
GET /images/empty-cart-illustration.svg HTTP/1.1
Host: everytable.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/Account/Login?ReturnUrl=%2FAccount%2FManage%2FSubscriptions%2FSettings%3Fid%3D7f046fc3-66ee-4d37-1371-08dab2daaa26
Cookie: __cf_bm=HenybGeyttPZphMU2JjWkPfO.b35eEmM4Peifv.aUSI-1674032896-0-ASfyioJzj2JxFhmtXhxwZgSRy/taUeroY9mupOCQmHfKynF4bheZY75sUNf2/U/D7fAYzF7JEZLY8DbzdeHm0AU=; .AspNetCore.Antiforgery.9fXoN5jHCXs=CfDJ8PeGRygCdzVOucg1irvo8_MIMREruhNoRZ0UpMcKOj71Og_DIZJhbD3otUevNVGCevSfCnvE35sPHDIDVbuswl3xLtOzHcY8H76UWF_f6ZCjAQVvKeUXuAtU7woOiHGHFX9uZxLKaOQEijG0atNHtiY
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:17 GMT
content-type: image/svg+xml
etag: W/"1d92187f6429f71"
last-modified: Fri, 06 Jan 2023 04:33:02 GMT
request-context: appId=cid-v1:c62b87f9-ce69-438e-a223-f3f1437300d0
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
cf-cache-status: HIT
expires: Wed, 18 Jan 2023 13:08:17 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 78b62f693c7db51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-gezFxlahzutjV7SvLxasT3VDwdRUYYgjjVbDJw&google_error=3
178.250.2.151200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-gezFxlahzutjV7SvLxasT3VDwdRUYYgjjVbDJw&google_error=3
IP 178.250.2.151:0
GET /dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-gezFxlahzutjV7SvLxasT3VDwdRUYYgjjVbDJw&google_error=3 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:23 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 236015
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
www.dwin1.com/19038.js
143.204.55.32200 OK 0 B IP 143.204.55.32:0
GET /19038.js HTTP/1.1
Host: www.dwin1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
x-amz-replication-status: COMPLETED
last-modified: Mon, 16 Jan 2023 14:20:24 GMT
x-amz-version-id: ahmMgKm6Nn_Y3jzw1jRM3PPXzI2QetvE
server: AmazonS3
content-encoding: gzip
date: Wed, 18 Jan 2023 09:00:56 GMT
cache-control: max-age=600, s-maxage=600
etag: W/"4e89cb39b157c6c509587a36accf3d00"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: tR8_46PVYWkRCtOJEj1jBlqeshQMmBNeEVk7Z8nptbT5EXA3rgPRGA==
age: 441
X-Firefox-Spdy: h2
widget.us.criteo.com/event?a=80903&v=5.12.3&p0=e%3Dce%26m%3D%255Bundefined%255D%26h%3Dsha256&p1=e%3Dexd%26z%3Dundefined%26site_type%3Dd&p2=e%3Dvh%26tms%3Dcustom-guide&p3=e%3Ddis&adce=1&bundle=xwqH8V9IMVAxNXhtJTJCSnBlcCUyRjVlcnJYaWpVdTVRY3pDVEdBbk90UE1RbEpzbUxCbUVlTktwVVolMkZaQ3U3bUlCSE14dGlYdkFpdkpIUDE5YWE2bWNLWVRVUk5hNFVRY2RqYzByZkdkTnhSVXg0VU1PQkV5azUyNUVQV25xTG0yNGZwQzhGR0ZDNVk4Q2lveU5ndUc2b3E4ckphc1ElM0QlM0Q&tld=everytable.com&dy=1&fu=https%253A%252F%252Feverytable.com%252FAccount%252FLogin%253FReturnUrl%253D%25252FAccount%25252FManage%25252FSubscriptions%25252FSettings%25253Fid%25253D7f046fc3-66ee-4d37-1371-08dab2daaa26&dtycbr=11437
74.119.119.150200 OK 0 B URL HTTP/2 widget.us.criteo.com/event?a=80903&v=5.12.3&p0=e%3Dce%26m%3D%255Bundefined%255D%26h%3Dsha256&p1=e%3Dexd%26z%3Dundefined%26site_type%3Dd&p2=e%3Dvh%26tms%3Dcustom-guide&p3=e%3Ddis&adce=1&bundle=xwqH8V9IMVAxNXhtJTJCSnBlcCUyRjVlcnJYaWpVdTVRY3pDVEdBbk90UE1RbEpzbUxCbUVlTktwVVolMkZaQ3U3bUlCSE14dGlYdkFpdkpIUDE5YWE2bWNLWVRVUk5hNFVRY2RqYzByZkdkTnhSVXg0VU1PQkV5azUyNUVQV25xTG0yNGZwQzhGR0ZDNVk4Q2lveU5ndUc2b3E4ckphc1ElM0QlM0Q&tld=everytable.com&dy=1&fu=https%253A%252F%252Feverytable.com%252FAccount%252FLogin%253FReturnUrl%253D%25252FAccount%25252FManage%25252FSubscriptions%25252FSettings%25253Fid%25253D7f046fc3-66ee-4d37-1371-08dab2daaa26&dtycbr=11437
IP 74.119.119.150:0
GET /event?a=80903&v=5.12.3&p0=e%3Dce%26m%3D%255Bundefined%255D%26h%3Dsha256&p1=e%3Dexd%26z%3Dundefined%26site_type%3Dd&p2=e%3Dvh%26tms%3Dcustom-guide&p3=e%3Ddis&adce=1&bundle=xwqH8V9IMVAxNXhtJTJCSnBlcCUyRjVlcnJYaWpVdTVRY3pDVEdBbk90UE1RbEpzbUxCbUVlTktwVVolMkZaQ3U3bUlCSE14dGlYdkFpdkpIUDE5YWE2bWNLWVRVUk5hNFVRY2RqYzByZkdkTnhSVXg0VU1PQkV5azUyNUVQV25xTG0yNGZwQzhGR0ZDNVk4Q2lveU5ndUc2b3E4ckphc1ElM0QlM0Q&tld=everytable.com&dy=1&fu=https%253A%252F%252Feverytable.com%252FAccount%252FLogin%253FReturnUrl%253D%25252FAccount%25252FManage%25252FSubscriptions%25252FSettings%25253Fid%25253D7f046fc3-66ee-4d37-1371-08dab2daaa26&dtycbr=11437 HTTP/1.1
Host: widget.us.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everytable.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:23 GMT
content-type: application/x-javascript
server: Kestrel
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
p3p: NON DSP COR CURa PSA PSD OUR BUS NAV STA
timing-allow-origin: *
server-processing-duration-in-ticks: 11835363
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
everytable.com/Account/Login?ReturnUrl=%2FAccount%2FManage%2FSubscriptions%2FSettings%3Fid%3D7f046fc3-66ee-4d37-1371-08dab2daaa26
104.18.207.227200 OK 0 B URL HTTP/2 everytable.com/Account/Login?ReturnUrl=%2FAccount%2FManage%2FSubscriptions%2FSettings%3Fid%3D7f046fc3-66ee-4d37-1371-08dab2daaa26
IP 104.18.207.227:0
GET /Account/Login?ReturnUrl=%2FAccount%2FManage%2FSubscriptions%2FSettings%3Fid%3D7f046fc3-66ee-4d37-1371-08dab2daaa26 HTTP/1.1
Host: everytable.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __cf_bm=HenybGeyttPZphMU2JjWkPfO.b35eEmM4Peifv.aUSI-1674032896-0-ASfyioJzj2JxFhmtXhxwZgSRy/taUeroY9mupOCQmHfKynF4bheZY75sUNf2/U/D7fAYzF7JEZLY8DbzdeHm0AU=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:17 GMT
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store
pragma: no-cache
set-cookie: .AspNetCore.Antiforgery.9fXoN5jHCXs=CfDJ8PeGRygCdzVOucg1irvo8_MIMREruhNoRZ0UpMcKOj71Og_DIZJhbD3otUevNVGCevSfCnvE35sPHDIDVbuswl3xLtOzHcY8H76UWF_f6ZCjAQVvKeUXuAtU7woOiHGHFX9uZxLKaOQEijG0atNHtiY; path=/; samesite=strict; httponly
vary: Accept-Encoding
request-context: appId=cid-v1:c62b87f9-ce69-438e-a223-f3f1437300d0
strict-transport-security: max-age=2592000
x-frame-options: SAMEORIGIN
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 78b62f666871b51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ads.nextdoor.com/public/pixel/ndp.js
52.26.190.231200 OK 0 B URL HTTP/2 ads.nextdoor.com/public/pixel/ndp.js
IP 52.26.190.231:0
GET /public/pixel/ndp.js HTTP/1.1
Host: ads.nextdoor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:18 GMT
content-type: application/javascript
server: istio-envoy
last-modified: Tue, 10 Jan 2023 06:07:09 GMT
vary: Accept-Encoding
etag: W/"63bd008d-19c7"
content-security-policy: frame-ancestors 'self' *.lightning.force.com nextdoor.com *.nextdoor.com nextdoor-test.com *.nextdoor-test.com;
content-encoding: gzip
x-envoy-upstream-service-time: 1
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
178.250.6.226200 OK 0 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 178.250.6.226:0
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:18 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 204228
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
178.250.6.175200 OK 0 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 178.250.6.175:0
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:18 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 107781
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
foreverytable.zendesk.com/embeddable/config
104.16.53.111200 OK 0 B URL HTTP/2 foreverytable.zendesk.com/embeddable/config
IP 104.16.53.111:0
GET /embeddable/config HTTP/1.1
Host: foreverytable.zendesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everytable.com/
Origin: https://everytable.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:19 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-expose-headers:
access-control-max-age: 7200
cache-control: public, max-age=60, stale-while-revalidate=600, stale-if-error=3600
x-zendesk-origin-server: embeddable-app-server-f84dc9db6-k62rc
x-request-id: 78b62f72aaa3b4f1-IAD
x-runtime: 0.002241
vary: Origin, Accept-Encoding
x-cached: MISS
last-modified: Tue, 17 Jan 2023 13:16:07 GMT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5%2BbIZV75H4%2F7yO5PX1KNG%2F%2BL0km1fF3kJi%2FViJY1fUkZhjdZrWq5zfK7WOBHb9XlvQXs%2FhaVQm7e5PNN9jKNYGYaDfevdKMIgW6ucR8RTg0mB%2FIbjhGq8tXoMUWZmuBHmHtJ8HCjd%2FCR44g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
set-cookie: __cfruid=f23986c3e95ebaaa3348b20ac974494f4cd726f7-1674032899; path=/; domain=.foreverytable.zendesk.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 78b62f72aaa3b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/classic/web-widget-5324-c772b95.js
104.18.72.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/classic/web-widget-5324-c772b95.js
IP 104.18.72.113:0
GET /web_widget/latest/classic/web-widget-5324-c772b95.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:19 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: scblkZB9uH8C6Q1qVh8Xf3V/zdsc/JTs12pHn2YHBzFCrYonjb5PFr1YZ2puBvqgh67Pe/0djTU=
x-amz-request-id: PSWF8PC52WWY3M9A
x-amz-replication-status: COMPLETED
last-modified: Mon, 16 Jan 2023 08:33:00 GMT
etag: W/"c640715c3c3469328df6d4a6055a3b4d"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 16 Jan 2024 08:32:59 GMT
x-amz-version-id: IXLUl2rcvVQkUT9QLeRAJkT38pr5eccT
cf-cache-status: HIT
age: 24086
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4WN6t6sKpnVYa2mUoXRo32joyaEDGFWLkmxWlSx4tN0fAS4vL%2Fw4NEu9MT5n9kjoawGA5SHwcAWF2obxXeRq7uSmqWE4nj9mdvWbBNBTorryT5vnKaS5rAyz35QlwtZdfycvdLM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 78b62f74cc841c16-OSL
content-encoding: br
X-Firefox-Spdy: h2
insight.adsrvr.org/track/evnt/?adv=1384v85&ct=0:3t40mt8&fmt=3
15.197.193.217200 OK 0 B URL HTTP/2 insight.adsrvr.org/track/evnt/?adv=1384v85&ct=0:3t40mt8&fmt=3
IP 15.197.193.217:0
GET /track/evnt/?adv=1384v85&ct=0:3t40mt8&fmt=3 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:22 GMT
content-type: image/gif
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-fYuRM1ahzutjV7SvLxasT3VDwdRw6Dn0vPo1pcFgiVD07GJY
35.156.104.64200 OK 0 B URL HTTP/2 exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-fYuRM1ahzutjV7SvLxasT3VDwdRw6Dn0vPo1pcFgiVD07GJY
IP 35.156.104.64:0
GET /usersync/push?partner=criteo&partnerId=k-fYuRM1ahzutjV7SvLxasT3VDwdRw6Dn0vPo1pcFgiVD07GJY HTTP/1.1
Host: exchange.mediavine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:24 GMT
content-type: text/html; charset=utf-8
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
cache-control: private, no-cache
set-cookie: mv_tokens=%7B%22mv_uuid%22%3A%22a999dc90-970f-11ed-9b77-51ccf02d7287%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Wed, 01 Feb 2023 09:08:24 GMT; Secure; SameSite=None
mv_tokens_eu-v1=%7B%22mv_uuid%22%3A%22a999dc90-970f-11ed-9b77-51ccf02d7287%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Wed, 01 Feb 2023 09:08:24 GMT; Secure; SameSite=None
am_tokens=%7B%22mv_uuid%22%3A%22a999dc90-970f-11ed-9b77-51ccf02d7287%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Wed, 01 Feb 2023 09:08:24 GMT; Secure; SameSite=None
am_tokens_eu-v1=%7B%22mv_uuid%22%3A%22a999dc90-970f-11ed-9b77-51ccf02d7287%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Wed, 01 Feb 2023 09:08:24 GMT; Secure; SameSite=None
criteo=%7B%22id%22%3A%22k-fYuRM1ahzutjV7SvLxasT3VDwdRw6Dn0vPo1pcFgiVD07GJY%22%2C%22version%22%3A%22criteo%22%7D; Path=/; Expires=Wed, 01 Feb 2023 09:08:24 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
ekr.zdassets.com/compose/5a3dc8c9-e974-4813-ac3d-5df39c57947a
104.18.72.113200 OK 0 B URL HTTP/2 ekr.zdassets.com/compose/5a3dc8c9-e974-4813-ac3d-5df39c57947a
IP 104.18.72.113:0
GET /compose/5a3dc8c9-e974-4813-ac3d-5df39c57947a HTTP/1.1
Host: ekr.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://everytable.com
Connection: keep-alive
Referer: https://everytable.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 09:08:18 GMT
content-type: application/json; charset=utf-8
status: 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cdn-cache-control: max-age=60
cache-control: max-age=600, public, stale-while-revalidate=600, stale-if-error=21600
etag: W/"09cfeb09e899f8936727a53c31ae22dc"
x-request-id: 78b62f6a7f48b509-ORD, 78b62f6a7f48b509-ORD
x-runtime: 0.002021
vary: Origin, Accept-Encoding
x-zendesk-zorg: yes
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7v34kXzp0%2BV2rd6Umu%2BizumRZIy3jTPyKq3JfTe4QQIg6dLTnBG86L97H21wGVuAUUpG9eTrQezdLWfRfMXh1hShJOGBJsUtAEiQnT6uEs58CdXihYjYcIEhG3J3pZMaisc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 78b62f6a7f48b509-OSL
content-encoding: br
X-Firefox-Spdy: h2
sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-jzFMoFahzutjV7SvLxasT3VDwdS8US00-fZcCA
141.226.228.48200 OK 0 B URL HTTP/2 sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-jzFMoFahzutjV7SvLxasT3VDwdS8US00-fZcCA
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
GET /sg/criteortb-network/1/rtb-h/?taboola_hm=k-jzFMoFahzutjV7SvLxasT3VDwdS8US00-fZcCA HTTP/1.1
Host: sync-t1.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 09:08:24 GMT
x-fastly-to-nlb-rtt: 22372
access-control-allow-credentials: true
X-Firefox-Spdy: h2